last executing test programs: 16.793202723s ago: executing program 0 (id=4059): r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x10, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, "", {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6, 0x24, 0x1a, 0x1}}, {{0x9, 0x5, 0x81, 0x3, 0x200, 0x8c, 0x0, 0xfd}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000740)={0x44, 0x0, 0x0, &(0x7f00000005c0)={0x0, 0x8, 0x1, 0x9}, &(0x7f0000000600)={0x20, 0x80, 0x1c, {0xcf66, 0xd, 0xeb8, 0x3, 0x6, 0x6, 0x5, 0x1, 0xfc00, 0xc, 0x0, 0x5}}, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0) syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) 11.620469966s ago: executing program 0 (id=4069): syz_mount_image$f2fs(&(0x7f00000000c0), &(0x7f0000000080)='./file2\x00', 0x0, &(0x7f0000000140)=ANY=[], 0x1, 0x5531, &(0x7f0000000b00)="$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") prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x23f}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r0 = getpid() sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0) io_setup(0x6, 0x0) socket$nl_generic(0x10, 0x3, 0x10) symlinkat(&(0x7f0000003040)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00') r3 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0) ioctl$F2FS_IOC_START_ATOMIC_WRITE(r3, 0xf501, 0x0) syz_open_dev$ttys(0xc, 0x2, 0x1) write$UHID_CREATE2(r3, &(0x7f0000000300)=ANY=[], 0x18f) ioctl$F2FS_IOC_COMMIT_ATOMIC_WRITE(r3, 0xf502, 0x0) 9.856332121s ago: executing program 1 (id=4076): syz_mount_image$fuse(0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280), 0x1, 0x51a, &(0x7f0000000f00)="$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") madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0}) write(r0, &(0x7f0000000000)="fa", 0xfffffdef) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000080)={0x4, &(0x7f0000000000)=[{0x460e, 0x6, 0x3, 0xee1}, {0x3, 0x4, 0x9, 0x1}, {0x1, 0xd, 0x6, 0x4}, {0x3c, 0x6, 0x1}]}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 7.302162341s ago: executing program 1 (id=4079): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180) ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc}) openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x16f) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x6, 0x248, 0x9b9a}, 0x3a, [0xfffffff5, 0x0, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x4025cd, 0x401, 0x40000b4, 0xa, 0x2, 0x4, 0x81, 0xe4, 0x6, 0xfffffffe, 0x9, 0xbbf, 0x200, 0x1, 0x48, 0x100d, 0x3, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x40008a, 0x79, 0x2, 0x10001, 0x4, 0x91, 0x4, 0xe768, 0x16, 0x1, 0x5, 0x2, 0x32, 0x405, 0xa7, 0x84, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x8, 0x7, 0x5, 0x4007f, 0xffffffff, 0x6], [0x3, 0x16e, 0x6, 0xf6ca, 0x4, 0xda, 0xb8a9, 0x20000070, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80d, 0x5, 0xa7, 0x1000, 0x101, 0x200b395, 0x400000, 0x80000000, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0xb, 0xffffff7f, 0x401, 0x6, 0x200, 0x96, 0x0, 0xfffffff6, 0x401, 0x6, 0xf1, 0x6, 0x55c, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x1, 0x0, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x2, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xfffc, 0x6, 0x2, 0x2e6bf783, 0xfffff100, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x5, 0xee4b, 0x2008004, 0x1, 0x691, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x9, 0xd3, 0x8, 0x3437, 0x2, 0xd, 0x7, 0x601, 0x105, 0x200dd80, 0x60a0, 0x80003, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x4, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0xa, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x2, 0x7, 0x5, 0xbfc, 0x8, 0x3, 0x7f, 0x55, 0x40, 0x0, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xfffffeff, 0xffbffff7, 0x8, 0x7, 0x3, 0x2939, 0x6, 0x80008001, 0x7777, 0x7fffffff, 0x2, 0x100, 0xffffffff, 0x7ffffffe, 0x4009, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0x6, 0x10000, 0x0, 0x8004, 0x6fff, 0x2, 0x3, 0xf, 0xe, 0x10, 0x26c, 0x6, 0xfffffff9, 0x4, 0xfffffff8, 0x9, 0xf, 0x463f, 0x4, 0xdad, 0xfffffffb, 0x8000, 0x14000, 0x1, 0x9]}, 0x45c) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x35, 0xffe, 0x0, 0x80000000, 0x8, 0x80000000, 0xa000000000f2, 0xd, 0x7fffffffffffe, 0x7, 0x400000005, 0x7, 0x0, 0x5, 0x2000000000004, 0x8], 0x25000, 0x204384}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x9}], 0x1, 0x1d, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 6.720491419s ago: executing program 0 (id=4080): bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x15, 0x2000000000000216, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2400000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000008500000008"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback=0x29, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x48, 0x48, 0x4, [@const={0x0, 0x0, 0x0, 0x9, 0x3}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x8}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}, @func_proto={0x0, 0x1, 0x0, 0xd, 0x0, [{0x2, 0x3}]}]}, {0x0, [0x0, 0x2e]}}, 0x0, 0x64}, 0x28) socket$inet_udp(0x2, 0x2, 0x0) socket(0x11, 0x3, 0x0) socket$packet(0x11, 0x2, 0x300) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000002c0)) socket(0x10, 0x3, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x803, 0x0) socket(0x10, 0x3, 0x0) r0 = socket$nl_audit(0x10, 0x3, 0x9) syz_usb_connect$uac1(0x5, 0xdc, &(0x7f0000000400)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206", @ANYRES8=r0, @ANYBLOB='\a'], 0x0) 5.769887589s ago: executing program 1 (id=4082): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r3 = fsopen(&(0x7f0000000180)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0) r4 = fsmount(r3, 0x0, 0x80) r5 = openat$cgroup_procs(r4, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) write$cgroup_pid(r5, &(0x7f0000001c00), 0x12) open(&(0x7f0000000040)='./bus\x00', 0x80242, 0x10) sendfile(0xffffffffffffffff, r5, 0x0, 0x2000000000006) 5.610629474s ago: executing program 2 (id=4084): r0 = socket$netlink(0x10, 0x3, 0x0) socket(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xa27}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = dup2(0xffffffffffffffff, 0xffffffffffffffff) read$FUSE(r4, 0x0, 0x0) read$FUSE(r4, &(0x7f0000000480)={0x2020}, 0x2020) r5 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000300)=ANY=[@ANYBLOB="020100050200000027bd7000fcdbdf255e6fc72973e3a34c00f4000099fcb87c569be8054d321ded3330823a6e1d7cfbd67b5b33465b2720720d4edb746a94c427b581d218344f417ad0460d731c04d5f93d9352833c00bef5e724a78d1274f11cd0c69fd729f3b30a99c9d763726805e4002836d773f4484163014bfc533eba5996422b814705c435964bef9391ea8e"], 0x10}}, 0x40000) sendmsg$IPCTNL_MSG_CT_NEW(r4, &(0x7f00000026c0)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000002680)={&(0x7f00000024c0)=ANY=[@ANYBLOB="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"/356], 0x164}, 0x1, 0x0, 0x0, 0x4048040}, 0x40001) ioctl$LOOP_CTL_GET_FREE(r4, 0x4c82) r6 = fsopen(&(0x7f0000000180)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0) r7 = fsmount(r6, 0x0, 0x80) r8 = openat$cgroup_procs(r7, &(0x7f00000002c0)='cgroup.procs\x00', 0x2, 0x0) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000002700)=ANY=[@ANYRES32=0x0, @ANYRES32=r4, @ANYBLOB="23001799bac9f5ea80411a1c000023200000be01b14914b1d13503550004000004517861849ab5267eca54becf16c70c3c3508453bc8396f9b09c85ff73fdd64e9c903bb07b88b51a7a29a9b304413537d04eccc037a0374b20a4642e064a4c0033702810071580d877f", @ANYRES32=r4, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB, @ANYRES64=0x0], 0x20) open(&(0x7f0000000040)='./bus\x00', 0x80242, 0x10) open(&(0x7f0000000040)='./bus\x00', 0x80202, 0x0) sendfile(r2, r8, 0x0, 0x2000000000006) sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x8001}, 0x4800) writev(r0, &(0x7f0000000040)=[{&(0x7f0000000000)="290000002000190f00003fffffffda0602000000fde80001dd0000040d001800ea11c21d0005000000", 0x29}], 0x1) 5.41926261s ago: executing program 3 (id=4085): r0 = socket$inet6(0xa, 0x1, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="1c00000027000701010000006c17f08803"], 0x1c}}, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e21}, 0x6e) sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) getrusage(0xffffffffffffffff, &(0x7f0000000380)) bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), 0xffffffffffffffff) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000001c00)=@raw={'raw\x00', 0x3c1, 0x3, 0x360, 0x1c0, 0x12, 0x60d, 0x1c0, 0x202, 0x290, 0x2e8, 0x2e8, 0x290, 0x2c0, 0x4, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth1_to_bond\x00', 'geneve1\x00'}, 0x0, 0x190, 0x1c0, 0x0, {}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'bm\x00', "000000000000000617ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e6726401fe4b124e0f7323a587d2a1fcf07000000eca0a7b66c60c527bac2b5", 0x2, 0x2}}, @common=@inet=@socket2={{0x28}}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE3={0x28}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3c0) 4.008836114s ago: executing program 2 (id=4086): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001040)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x404c8f0}, 0x4890) r4 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r4, &(0x7f0000000080)="bad330fb07000000040000ea07d6", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x19, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14) 3.758382242s ago: executing program 3 (id=4087): syz_mount_image$fuse(0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280), 0x1, 0x51a, &(0x7f0000000f00)="$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") madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0}) write(r0, &(0x7f0000000000)="fa", 0xfffffdef) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x2) ioctl$KVM_RUN(r3, 0xae80, 0x0) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000080)={0x4, &(0x7f0000000000)=[{0x460e, 0x6, 0x3, 0xee1}, {0x3, 0x4, 0x9, 0x1}, {0x1, 0xd, 0x6, 0x4}, {0x3c, 0x6, 0x1}]}, 0x10) ioctl$KVM_RUN(r3, 0xae80, 0x0) 3.242659838s ago: executing program 2 (id=4088): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe3000/0x18000)=nil, 0x0, 0x0, 0x41, 0x0, 0x0) syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000000)='./file2\x00', 0x20404a, &(0x7f00000003c0)=ANY=[], 0xfd, 0x1eb, &(0x7f0000000140)="$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") r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x40) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x12012, r3, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f00000005c0)=@vmx={0x0, 0x0, 0x2080, {0xffa95f268cb20b5c, 0x2000, {0x2}, 0x1, 0x400000000008}, {"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", "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"}}) 2.824826062s ago: executing program 1 (id=4089): syz_mount_image$erofs(&(0x7f0000001840), &(0x7f00000001c0)='./file1\x00', 0x40, &(0x7f0000000900)=ANY=[@ANYBLOB="00ea2eb34e7ea51c9446c55a2d1e0be39af9faf44ad59cb6ad1c94490d970e811439edddc71c9b18946b559ce53bee0a1abe562fc3f3898e5826eda1962cf6e3c4c0ade52151923a70b46eacfc1aaaebcf156e549e884bcabc1333f344f31cd30cd93cb2814e0dbc24a7a107e295e86e09283c824fe177c89c6385f68f2c843cffffffff15539bab6142ceed9265ba989d1a283fc4ffc83f3a7a6c746823e656ad78e3b5a336cdbd83da02000000b36b4ea5e658e253f01637cc03f704a08019f95b92fffffffff8dd21552d6967ab1b01e5012a5793eb179deee4572770a5197127b090287bca2a4eaa1705b42c16968d0201d3ba3cc8000000657ea095f152b1b6a1e6ad8d24ad17f649ccc23d4ecbcdb5620cc48f95f563c2230f859d196e6c4f00b8e3a7b01fcb1d79dcc09b7a854ec8c31dd27ff9b4a2864e1dcaf719d20bb82f1b71b77e88b2f756769d51228ecc1915fb8c8b598c11b3c296b05f9c5355fc6f19a7b28f5ae9a0d0804ccc5716cfac0246ddffa2f12077a02a959aa1b74373c38b2bcc90743b80666eae25dea73e127263b8fdbc64fe862b994ca847"], 0x1, 0x17d, &(0x7f00000004c0)="$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") r0 = open(&(0x7f00000001c0)='./file1\x00', 0x4000, 0x16) read$usbmon(r0, &(0x7f0000000000)=""/32, 0x20) 2.653499897s ago: executing program 0 (id=4090): mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x180) ioctl$KVM_CAP_EXIT_HYPERCALL(0xffffffffffffffff, 0x4068aea3, &(0x7f0000000040)={0x79, 0x0, 0xc}) openat$dir(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x40, 0x16f) write$uinput_user_dev(0xffffffffffffffff, &(0x7f0000000cc0)={'syz1\x00', {0xfff9, 0x6, 0x248, 0x9b9a}, 0x3a, [0xfffffff5, 0x0, 0x5, 0x10009, 0x8, 0x155f, 0x6, 0x2, 0x4025cd, 0x401, 0x40000b4, 0xa, 0x2, 0x4, 0x81, 0xe4, 0x6, 0xfffffffe, 0x9, 0xbbf, 0x200, 0x1, 0x48, 0x100d, 0x3, 0x12a0, 0x8000, 0x1, 0x7, 0x6, 0x7, 0x81, 0x40008a, 0x79, 0x2, 0x10001, 0x4, 0x91, 0x4, 0xe768, 0x16, 0x1, 0x5, 0x2, 0x32, 0x405, 0xa7, 0x84, 0x9, 0xf9a2, 0x80000001, 0xff, 0x2, 0x2, 0x2, 0x2, 0x7, 0x8, 0x7, 0x5, 0x4007f, 0xffffffff, 0x6], [0x3, 0x16e, 0x6, 0xf6ca, 0x4, 0xda, 0xb8a9, 0x20000070, 0x8e, 0xd50, 0x7, 0x5, 0xfffffffe, 0x80d, 0x5, 0xa7, 0x1000, 0x101, 0x200b395, 0x400000, 0x80000000, 0x4, 0x19, 0x7, 0x400001, 0x3, 0x3, 0xb, 0xffffff7f, 0x401, 0x6, 0x200, 0x96, 0x0, 0xfffffff6, 0x401, 0x6, 0xf1, 0x6, 0x55c, 0x5, 0x6, 0x2, 0x5, 0x3ff, 0x1ff, 0x1, 0x1, 0x0, 0x1ce, 0x1, 0x80000004, 0x80000001, 0x2, 0x2, 0x9, 0x95, 0x80000000, 0x4, 0xfffffff9, 0x40000003, 0x1000, 0xfffff804, 0x5], [0x2, 0xfffffffe, 0xfffc, 0x6, 0x2, 0x2e6bf783, 0xfffff100, 0x5, 0x400005, 0x491, 0x8d3, 0x200006, 0x8, 0x400, 0x2, 0x400, 0x41, 0x5, 0xee4b, 0x2008004, 0x1, 0x691, 0x5, 0x89, 0x3, 0x3, 0x9, 0x3, 0xc7, 0xffe, 0x10000a, 0x8000, 0x401, 0x3e55, 0x9, 0xd3, 0x8, 0x3437, 0x2, 0xd, 0x7, 0x601, 0x105, 0x200dd80, 0x60a0, 0x80003, 0x9d26, 0x10000, 0x1, 0x2, 0x2, 0x4, 0x8000, 0x0, 0x3, 0xd500, 0x8, 0x77, 0x9, 0xa, 0x10000, 0x3, 0x8, 0x1], [0xa772, 0x2, 0x7, 0x5, 0xbfc, 0x8, 0x3, 0x7f, 0x55, 0x40, 0x0, 0x1005, 0x1, 0x8000007, 0x1e, 0x9, 0x81, 0x3, 0x9d86, 0xfffffeff, 0xffbffff7, 0x8, 0x7, 0x3, 0x2939, 0x6, 0x80008001, 0x7777, 0x7fffffff, 0x2, 0x100, 0xffffffff, 0x7ffffffe, 0x4009, 0xc, 0x32d, 0x3, 0x1ff, 0x2000803, 0x6, 0x10000, 0x0, 0x8004, 0x6fff, 0x2, 0x3, 0xf, 0xe, 0x10, 0x26c, 0x6, 0xfffffff9, 0x4, 0xfffffff8, 0x9, 0xf, 0x463f, 0x4, 0xdad, 0xfffffffb, 0x8000, 0x14000, 0x1, 0x9]}, 0x45c) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x40040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000003c0)={[0x35, 0xffe, 0x0, 0x80000000, 0x8, 0x80000000, 0xa000000000f2, 0xd, 0x7fffffffffffe, 0x7, 0x400000005, 0x7, 0x0, 0x5, 0x2000000000004, 0x8], 0x25000, 0x204384}) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) r5 = dup(r4) ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x2) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text32={0x20, &(0x7f00000000c0)="c20000361e0f01c3660fd2eff30f10f1b961020000b80e000000ba000000000f30b98d0200000f320b99f3530000660f6af7c4e2f91d20", 0x9}], 0x1, 0x1d, 0x0, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 2.482587302s ago: executing program 1 (id=4091): request_key(0x0, &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdeex\xe5+\xf0', 0xffffffffffffffff) mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0) stat(&(0x7f0000000140)='./file0\x00', 0x0) mount$fuse(0x0, 0x0, 0x0, 0x10001, 0x0) syz_fuse_handle_req(r0, 0x0, 0x0, 0x0) syz_fuse_handle_req(r0, 0x0, 0x0, 0x0) execve(0x0, 0x0, 0x0) socket$inet_udp(0x2, 0x2, 0x0) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x10000, &(0x7f00000003c0), 0x1, 0x50a, &(0x7f0000001f40)="$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") r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cpuset.effective_mems\x00', 0x275a, 0x0) syz_usb_connect(0x5, 0x0, 0x0, &(0x7f0000001280)={0x0, 0x0, 0x0, 0x0}) write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b) sync_file_range(r1, 0xee1, 0x7ff, 0x6) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0) ioctl$XFS_IOC_GOINGDOWN(r1, 0x8004587d, &(0x7f0000000100)=0x1) 2.481001112s ago: executing program 3 (id=4092): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000080), r1) r3 = socket$netlink(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) ioctl$sock_FIOGETOWN(r3, 0x8903, &(0x7f0000000140)=0x0) sched_setaffinity(r4, 0x8, &(0x7f00000002c0)=0x2) r5 = getpid() sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40}, 0xc, 0x0}, 0x20000880) sched_setscheduler(r5, 0x1, &(0x7f0000000100)=0x5) connect$unix(0xffffffffffffffff, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r6 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NL80211_CMD_SET_TID_CONFIG(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x38}}, 0x24000000) sched_setaffinity(0x0, 0xfffffffffffffccd, &(0x7f00000001c0)=0x2) unshare(0x64000600) syz_open_procfs(0x0, &(0x7f00000002c0)='net/netlink\x00') r7 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r7, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x7}, 0x1c) syz_emit_ethernet(0x36, &(0x7f00000002c0)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x3, 0x28, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2, 0x6071, 0x0, 0xe7}}}}}}, 0x0) sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="5800000010001fff0000", @ANYRES32=0x0, @ANYBLOB, @ANYRES32=0x0, @ANYBLOB="0800030007000000080005"], 0x58}}, 0x0) sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x30, r2, 0x1, 0x70bd27, 0x25dfdbfc, {{}, {}, {0xd, 0x19, {0x8, 0x1ff, 0xfffffff3, 0x1}}}}, 0x30}, 0x1, 0x0, 0x0, 0x40018}, 0x20004000) sendmsg$TIPC_CMD_RESET_LINK_STATS(r0, 0x0, 0x1) 2.452298973s ago: executing program 2 (id=4093): r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000007c0), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0) r1 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1) ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90}) ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000d40)={0x3, 0x0, [{0x0, 0x6d, &(0x7f0000000dc0)=""/109}, {0xdddd1000, 0xfc, &(0x7f0000000c00)=""/252}, {0x4, 0x1c, &(0x7f0000000d00)=""/28}]}) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1) ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x2, 0x5, 0x1}) 2.146085003s ago: executing program 2 (id=4094): syz_open_procfs(0x0, &(0x7f0000000540)='mounts\x00') epoll_create1(0x80000) socket$nl_route(0x10, 0x3, 0x0) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes\x00', 0x275a, 0x0) socket$nl_route(0x10, 0x3, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x4004000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)=[@rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}], 0x60}, 0x2082) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000680), 0xd40, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil}) bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0xa, 0x4, &(0x7f0000000080)=ANY=[@ANYBLOB="7b87f20f", @ANYRES64], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 2.073768385s ago: executing program 3 (id=4095): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff) sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000440)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000fedbdf25030000001c0001801200010069623a00007468305f766c616e000000040002"], 0x30}}, 0x8010) 2.002710777s ago: executing program 0 (id=4096): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001040)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x404c8f0}, 0x4890) r4 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r4, &(0x7f0000000080)="bad330fb07000000040000ea07d6", 0xe, 0x40, &(0x7f00000001c0)={0x11, 0x19, r3, 0x1, 0xd8, 0x6, @broadcast}, 0x14) 1.829995742s ago: executing program 3 (id=4097): socket$inet(0x2, 0x4000000000000001, 0x0) sched_setaffinity(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0xfffffffd}, 0x6e) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x1000)=nil, 0x1000, &(0x7f0000000000)='\x00') prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, &(0x7f0000000340)='nl80211\x00\xfd\"0\xcc\xd2W\x84Pb\xd7\x87,h\xce\x98\xec\xc2oe\x85\xfd/\xff\xc1\x80u\xd63\xeb\n\x8d~\xc9\x11\xe1\xcf\xf6l\x82Q\x1b\xd9Py\xfe=\xb60\x11\xdd\xae\xbd~\xc51\x1a\xb7\x81#`\x81\xf3\xefE\x06F\vy\v\xe32\x01\xc3K\x1f\xe7u\xa5T@G\xda\x1c\xd7\xb5\xe8\\\xd5z\x7f\xc8Y1\xa9\x9a\xa4\x0e\x9d\x83AVJ@\x99\xbcAx\xff\xbfZ\x17\x9c\x00_\xbb\x19\xb9O\\\xd8ujf|)H\xf6>1i') socket$pppl2tp(0x18, 0x1, 0x1) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x203, 0x0) r2 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000400)='/proc/locks\x00', 0x0, 0x0) sendfile(0xffffffffffffffff, r2, 0x0, 0x20000023896) syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) 1.679235767s ago: executing program 0 (id=4098): sched_setaffinity(0x0, 0x0, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8) r0 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r0, 0x1, &(0x7f0000000240)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0xfffffffd}, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x4000087, 0x2, 0x0) socket$pppl2tp(0x18, 0x1, 0x1) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x203, 0x0) r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x20000023896) socket$netlink(0x10, 0x3, 0x0) r4 = openat(0xffffffffffffff9c, 0x0, 0x103242, 0x15) syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000200)='./bus\x00', 0x1400c, &(0x7f0000000340)={[{@test_dummy_encryption}, {@nodioread_nolock}, {@norecovery}]}, 0x3, 0x470, &(0x7f0000000dc0)="$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") syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000100)='./bus\x00', 0xd01ce0, 0x0, 0x82, 0x0, &(0x7f0000000080)) chdir(&(0x7f00000003c0)='./bus\x00') openat(0xffffffffffffff9c, 0x0, 0x42, 0x0) r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0xe9) getdents(r5, 0x0, 0xbb) fcntl$getownex(r4, 0x10, 0x0) pwrite64(r4, &(0x7f0000000140), 0x0, 0x8c00) clock_gettime(0x0, &(0x7f0000000300)) futimesat(r4, 0x0, &(0x7f0000000380)={{}, {0x77359400}}) 1.678919007s ago: executing program 2 (id=4099): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) fchdir(r0) syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0/file1\x00', 0x104000, 0x0, 0x0, 0x0, 0x0) r1 = openat$cgroup_ro(r0, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r1, &(0x7f0000000200)=0x1, 0x12) 1.529285132s ago: executing program 1 (id=4100): syz_mount_image$fuse(0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe) mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil) syz_mount_image$ext4(&(0x7f0000000180)='ext2\x00', &(0x7f0000000540)='./bus\x00', 0x8800, &(0x7f0000000280), 0x1, 0x51a, &(0x7f0000000f00)="$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") madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15) r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x2, 0x0, &(0x7f0000000140)={0x0, 0x0}) write(r0, &(0x7f0000000000)="fa", 0xfffffdef) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_RUN(r1, 0xae80, 0x0) setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x16, &(0x7f0000000080)={0x4, &(0x7f0000000000)=[{0x460e, 0x6, 0x3, 0xee1}, {0x3, 0x4, 0x9, 0x1}, {0x1, 0xd, 0x6, 0x4}, {0x3c, 0x6, 0x1}]}, 0x10) ioctl$KVM_RUN(r1, 0xae80, 0x0) 0s ago: executing program 3 (id=4101): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000340)='./file1\x00', 0x200010, &(0x7f0000002f40)={[{@nobarrier}, {@dioread_lock}, {@barrier_val={'barrier', 0x3d, 0x4}}, {@nolazytime}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@lazytime}, {@errors_remount}, {@stripe={'stripe', 0x3d, 0x10}}, {@bh}, {@init_itable}]}, 0xfc, 0x56f, &(0x7f0000003780)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0) fallocate(r0, 0x0, 0x0, 0x8ffff) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14b442, 0x82) ioctl$EXT4_IOC_GET_ES_CACHE(r1, 0xc020662a, &(0x7f0000000140)={0x4, 0x8000000000000000, 0x4, 0x1}) kernel console output (not intermixed with test programs): 80189][T13040] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 639.119879][T13040] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2cf6, bcdDevice= 0.00 [ 639.151669][T13040] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 639.186916][T13040] usb 2-1: config 0 descriptor?? [ 641.085054][T13040] pyra 0003:1E7D:2CF6.000B: unknown main item tag 0x0 [ 641.091984][T13040] pyra 0003:1E7D:2CF6.000B: item fetching failed at offset 5/7 [ 641.100820][T13040] pyra 0003:1E7D:2CF6.000B: parse failed [ 641.107042][T13040] pyra: probe of 0003:1E7D:2CF6.000B failed with error -22 [ 641.145864][T13040] usb 2-1: USB disconnect, device number 17 [ 642.743474][T16756] create_pit_timer: 7 callbacks suppressed [ 642.743569][T16756] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 642.801195][T16766] syzkaller0: entered promiscuous mode [ 642.822115][T16766] syzkaller0: entered allmulticast mode [ 642.883285][T16756] kvm: pic: non byte read [ 642.916839][T16756] kvm: pic: level sensitive irq not supported [ 642.917406][T16756] kvm: pic: non byte read [ 642.968126][T16756] kvm: pic: level sensitive irq not supported [ 642.968299][T16756] kvm: pic: non byte read [ 643.020358][T16756] kvm: pic: level sensitive irq not supported [ 643.020449][T16756] kvm: pic: non byte read [ 644.810990][T13040] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 644.947063][T16787] loop3: detected capacity change from 0 to 4096 [ 644.967170][T16787] EXT4-fs (loop3): Test dummy encryption mode enabled [ 645.007541][T16787] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 645.029211][T13040] usb 1-1: unable to get BOS descriptor or descriptor too short [ 645.078394][T13040] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 64, changing to 7 [ 645.196102][T13040] usb 1-1: New USB device found, idVendor=0582, idProduct=004c, bcdDevice= 0.40 [ 645.205391][T13040] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 645.242059][T13040] usb 1-1: Product: syz [ 645.263666][T13040] usb 1-1: Manufacturer: syz [ 645.268507][T13040] usb 1-1: SerialNumber: syz [ 645.443683][T16790] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 645.621379][T13040] usb 1-1: 1:1 : UAC_AS_GENERAL descriptor not found [ 645.663713][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 645.846509][T13040] usb 1-1: 2:1 : unknown format tag 0x4 is detected. processed as MPEG. [ 645.865266][T13040] usb 1-1: found format II with max.bitrate = 4, frame size=7372 [ 645.878094][T16798] loop3: detected capacity change from 0 to 512 [ 645.919344][T16798] ext2: Unknown parameter 'smackfsfloor' [ 646.425326][T16798] loop3: detected capacity change from 0 to 40427 [ 646.437478][T13040] usb 1-1: invalid uac2 rates [ 646.442412][T13040] usb 1-1: invalid uac2 rates [ 646.469185][T16798] F2FS-fs (loop3): Fix alignment : internally, start(4096) end(16896) block(12288) [ 646.487999][T16798] F2FS-fs (loop3): invalid crc value [ 646.618457][T16798] F2FS-fs (loop3): Found nat_bits in checkpoint [ 646.689887][T16798] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 647.227161][T13040] usb 1-1: 2:1 : unknown format tag 0x4 is detected. processed as MPEG. [ 647.235680][T13040] usb 1-1: found format II with max.bitrate = 4, frame size=7372 [ 647.244647][T13040] usb 1-1: parse_audio_format_rates_v2v3(): unable to retrieve number of sample rates (clock 0) [ 647.527882][T13040] usb 1-1: USB disconnect, device number 11 [ 647.610165][T15157] udevd[15157]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 647.856572][ T27] usb 2-1: new full-speed USB device number 18 using dummy_hcd [ 648.072865][ T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 648.092731][ T27] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 648.123917][ T27] usb 2-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 648.148394][ T27] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 648.166722][T16808] syzkaller0: entered promiscuous mode [ 648.178697][ T27] usb 2-1: config 0 descriptor?? [ 648.194827][T16808] syzkaller0: entered allmulticast mode [ 648.204188][ T27] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 648.794497][T16813] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 648.836845][T16817] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3435'. [ 649.147521][T16824] loop0: detected capacity change from 0 to 256 [ 649.217064][T16824] FAT-fs (loop0): Directory bread(block 64) failed [ 649.234605][T16824] FAT-fs (loop0): Directory bread(block 65) failed [ 649.246700][T16824] FAT-fs (loop0): Directory bread(block 66) failed [ 649.253316][T16824] FAT-fs (loop0): Directory bread(block 67) failed [ 649.281265][T16824] FAT-fs (loop0): Directory bread(block 68) failed [ 649.303559][T16824] FAT-fs (loop0): Directory bread(block 69) failed [ 649.325431][T16824] FAT-fs (loop0): Directory bread(block 70) failed [ 649.336111][T16824] FAT-fs (loop0): Directory bread(block 71) failed [ 649.349248][T16824] FAT-fs (loop0): Directory bread(block 72) failed [ 649.356110][T16824] FAT-fs (loop0): Directory bread(block 73) failed [ 649.426051][ T28] audit: type=1800 audit(1781357218.478:9): pid=16824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3438" name="bus" dev="loop0" ino=1048608 res=0 errno=0 [ 649.458182][T16824] syz.0.3438: attempt to access beyond end of device [ 649.458182][T16824] loop0: rw=2049, sector=1224, nr_sectors = 4 limit=256 [ 649.477297][ T28] audit: type=1804 audit(1781357218.506:10): pid=16824 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.3438" name="/newroot/244/file1/bus" dev="loop0" ino=1048608 res=1 errno=0 [ 649.832663][T16822] loop3: detected capacity change from 0 to 40427 [ 649.887519][T16822] F2FS-fs (loop3): invalid crc value [ 649.915914][T16822] F2FS-fs (loop3): Found nat_bits in checkpoint [ 650.074646][T16822] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 650.837972][T13040] usb 2-1: USB disconnect, device number 18 [ 651.382841][T16845] syzkaller0: entered promiscuous mode [ 651.388400][T16845] syzkaller0: entered allmulticast mode [ 651.458040][T13687] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 651.467594][T16835] loop3: detected capacity change from 0 to 40427 [ 651.482883][T16835] F2FS-fs (loop3): build fault injection attr: rate: 19, type: 0x7ffff [ 651.670684][T13687] usb 1-1: Using ep0 maxpacket: 32 [ 651.679871][T13687] usb 1-1: config 0 has an invalid interface number: 184 but max is 0 [ 651.710218][T13687] usb 1-1: config 0 has no interface number 0 [ 651.727127][T13687] usb 1-1: config 0 interface 184 has no altsetting 0 [ 651.760983][T13687] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee [ 651.788987][T13687] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 651.818990][T13687] usb 1-1: Product: syz [ 651.829789][T13687] usb 1-1: Manufacturer: syz [ 651.840576][T13687] usb 1-1: SerialNumber: syz [ 651.867439][T13687] usb 1-1: config 0 descriptor?? [ 651.886560][T13687] smsc75xx v1.0.0 [ 651.981011][T16852] loop1: detected capacity change from 0 to 2048 [ 652.000079][T16852] ext4: Unknown parameter 'context' [ 652.081937][T14844] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 652.099337][ T27] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 652.313701][ T27] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 652.339461][ T27] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 652.361451][ T27] usb 3-1: config 220 has no interface number 2 [ 652.368082][ T27] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 653.225272][ T27] usb 3-1: config 220 interface 0 has no altsetting 0 [ 653.246663][ T27] usb 3-1: config 220 interface 76 has no altsetting 0 [ 653.275861][ T27] usb 3-1: config 220 interface 1 has no altsetting 0 [ 653.323275][ T27] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 653.336986][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 653.352234][ T27] usb 3-1: Product: syz [ 653.356470][ T27] usb 3-1: Manufacturer: syz [ 653.367225][ T27] usb 3-1: SerialNumber: syz [ 653.440335][T13687] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32 [ 653.451420][T13687] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 653.577862][ T5865] usb 2-1: new full-speed USB device number 19 using dummy_hcd [ 653.628406][ T27] usb 3-1: selecting invalid altsetting 0 [ 653.646161][ T27] usb 3-1: Found UVC 7.01 device syz (8086:0b07) [ 653.665361][ T27] usb 3-1: No valid video chain found. [ 653.683797][T16866] netlink: 104 bytes leftover after parsing attributes in process `syz.3.3452'. [ 653.688035][ T27] usb 3-1: selecting invalid altsetting 0 [ 653.694930][T13687] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000010: -71 [ 653.711553][ T27] usbtest: probe of 3-1:220.1 failed with error -22 [ 653.738435][T13687] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read HW_CFG: -71 [ 653.741376][ T27] usb 3-1: USB disconnect, device number 17 [ 653.759072][T13687] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71 [ 653.784497][T13687] smsc75xx: probe of 1-1:0.184 failed with error -71 [ 653.801317][ T5865] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 653.811051][T13687] usb 1-1: USB disconnect, device number 12 [ 653.824894][ T5865] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 653.842538][ T5865] usb 2-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 653.872665][ T5865] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 653.882970][ T5865] usb 2-1: config 0 descriptor?? [ 653.896617][ T5865] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 654.567625][T16875] loop3: detected capacity change from 0 to 1024 [ 656.445186][T16878] syzkaller0: entered promiscuous mode [ 656.457309][T16878] syzkaller0: entered allmulticast mode [ 656.496067][T13687] usb 2-1: USB disconnect, device number 19 [ 656.650711][T16884] loop1: detected capacity change from 0 to 1024 [ 656.812429][T16884] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 656.905897][T16884] EXT4-fs error (device loop1): ext4_iget_extra_inode:4739: inode #15: comm syz.1.3458: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled [ 657.152975][T12990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 657.493543][T16892] loop1: detected capacity change from 0 to 256 [ 657.495435][ T5881] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 657.501507][T16892] exfat: Deprecated parameter 'utf8' [ 657.518202][T16892] exfat: Deprecated parameter 'utf8' [ 657.569511][T16892] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 657.751934][ T5881] usb 1-1: Using ep0 maxpacket: 16 [ 657.780268][ T5881] usb 1-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 657.799642][ T5881] usb 1-1: New USB device strings: Mfr=1, Product=6, SerialNumber=3 [ 657.832265][ T5881] usb 1-1: Product: syz [ 657.836509][ T5881] usb 1-1: Manufacturer: syz [ 657.851648][ T5881] usb 1-1: SerialNumber: syz [ 657.875872][ T5881] usb 1-1: config 0 descriptor?? [ 657.893186][ T5881] ums-onetouch 1-1:0.0: USB Mass Storage device detected [ 658.173144][ T5881] usb 1-1: USB disconnect, device number 13 [ 658.315765][T16907] loop1: detected capacity change from 0 to 512 [ 658.369779][T16907] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 658.419156][T16907] EXT4-fs (loop1): 1 truncate cleaned up [ 658.432800][T16907] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 659.287838][T16910] syzkaller0: entered promiscuous mode [ 659.311951][T16910] syzkaller0: entered allmulticast mode [ 660.267862][T16912] syzkaller0: entered promiscuous mode [ 660.295363][T16912] syzkaller0: entered allmulticast mode [ 660.481048][T12990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 660.713020][T16914] loop1: detected capacity change from 0 to 1024 [ 660.748439][T16914] EXT4-fs: Ignoring removed oldalloc option [ 660.782158][T16914] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 660.799611][T16914] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement. [ 661.273862][T16924] fuse: Bad value for 'fd' [ 661.506393][T16929] syzkaller0: entered promiscuous mode [ 661.512955][T16931] loop0: detected capacity change from 0 to 256 [ 661.520393][T16929] syzkaller0: entered allmulticast mode [ 661.584730][T16931] exFAT-fs (loop0): failed to load upcase table (idx : 0x000106cd, chksum : 0x3aeaf2c0, utbl_chksum : 0xe619d30d) [ 661.666771][T16931] syz.0.3476: attempt to access beyond end of device [ 661.666771][T16931] loop0: rw=524288, sector=4280, nr_sectors = 1 limit=256 [ 661.704585][T16931] syz.0.3476: attempt to access beyond end of device [ 661.704585][T16931] loop0: rw=0, sector=4280, nr_sectors = 1 limit=256 [ 661.756990][ T28] audit: type=1800 audit(1781357230.016:11): pid=16931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.3476" name="file1" dev="loop0" ino=1048609 res=0 errno=0 [ 661.880728][T16934] exFAT-fs (loop0): error, found bogus dentry(11) beyond unused empty group(10) (start_clu : 5, cur_clu : 5) [ 661.904893][T16934] exFAT-fs (loop0): Filesystem has been set read-only [ 662.002667][T16931] exFAT-fs (loop0): hint_cluster is invalid (521), rewind to the first cluster [ 662.074275][T16931] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000208) [ 662.087751][T16938] syzkaller0: entered promiscuous mode [ 662.093602][T16931] exFAT-fs (loop0): error, failed to bmap (inode : ffff8880547994e0 iblock : 9, err : -5) [ 662.104720][T16938] syzkaller0: entered allmulticast mode [ 662.123334][T16931] exFAT-fs (loop0): error, invalid access to FAT (entry 0x00000208) [ 662.145987][T16931] syz.0.3476: attempt to access beyond end of device [ 662.145987][T16931] loop0: rw=2049, sector=4281, nr_sectors = 1 limit=256 [ 662.198657][T16931] Buffer I/O error on dev loop0, logical block 4281, lost async page write [ 662.229315][T16931] syz.0.3476: attempt to access beyond end of device [ 662.229315][T16931] loop0: rw=2049, sector=4282, nr_sectors = 1 limit=256 [ 662.273626][T16931] Buffer I/O error on dev loop0, logical block 4282, lost async page write [ 662.293653][T16931] syz.0.3476: attempt to access beyond end of device [ 662.293653][T16931] loop0: rw=2049, sector=4283, nr_sectors = 1 limit=256 [ 662.325740][T16931] Buffer I/O error on dev loop0, logical block 4283, lost async page write [ 662.356193][T16931] syz.0.3476: attempt to access beyond end of device [ 662.356193][T16931] loop0: rw=2049, sector=4284, nr_sectors = 1 limit=256 [ 662.415175][T16931] Buffer I/O error on dev loop0, logical block 4284, lost async page write [ 662.424140][T16931] syz.0.3476: attempt to access beyond end of device [ 662.424140][T16931] loop0: rw=2049, sector=4285, nr_sectors = 1 limit=256 [ 662.438206][T16931] Buffer I/O error on dev loop0, logical block 4285, lost async page write [ 662.449484][T16931] syz.0.3476: attempt to access beyond end of device [ 662.449484][T16931] loop0: rw=2049, sector=4286, nr_sectors = 1 limit=256 [ 662.485659][T16931] Buffer I/O error on dev loop0, logical block 4286, lost async page write [ 662.522195][T16931] syz.0.3476: attempt to access beyond end of device [ 662.522195][T16931] loop0: rw=2049, sector=4287, nr_sectors = 1 limit=256 [ 662.557586][T16931] Buffer I/O error on dev loop0, logical block 4287, lost async page write [ 662.920213][T16946] kvm: kvm [16945]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x10000008b [ 662.941849][T16946] kvm: kvm [16945]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x100002785 [ 662.975335][T16941] loop3: detected capacity change from 0 to 40427 [ 662.992510][T16941] F2FS-fs (loop3): invalid crc value [ 663.051514][T16946] kvm: kvm [16945]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x10000388e [ 663.227934][T16956] fuse: Bad value for 'fd' [ 663.233348][T16941] F2FS-fs (loop3): Start checkpoint disabled! [ 663.287944][T16941] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 663.463373][T16961] syzkaller0: entered promiscuous mode [ 663.490269][T16961] syzkaller0: entered allmulticast mode [ 663.576708][ T59] kworker/u4:4: attempt to access beyond end of device [ 663.576708][ T59] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 663.622616][ T59] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 664.177759][T16968] syzkaller0: entered promiscuous mode [ 664.183569][T16968] syzkaller0: entered allmulticast mode [ 664.339713][T16976] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3489'. [ 664.935375][T16979] loop3: detected capacity change from 0 to 256 [ 664.954870][T16979] exfat: Deprecated parameter 'utf8' [ 664.980395][T16979] exfat: Bad value for 'fmask' [ 665.220379][T16984] fuse: Bad value for 'fd' [ 671.271042][T17002] loop1: detected capacity change from 0 to 512 [ 671.377066][T17002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 671.611614][T17002] EXT4-fs error (device loop1): ext4_validate_block_bitmap:421: comm syz.1.3498: bg 0: bad block bitmap checksum [ 671.794694][T12990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 671.904882][T17016] netlink: 68 bytes leftover after parsing attributes in process `syz.2.3502'. [ 672.597844][T17018] loop1: detected capacity change from 0 to 128 [ 672.641148][T17018] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 672.692189][T17018] ext4 filesystem being mounted at /294/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 672.933559][T12990] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 673.141963][T13040] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 673.228509][T17026] capability: warning: `syz.0.3507' uses deprecated v2 capabilities in a way that may be insecure [ 673.367270][T13040] usb 3-1: config 220 has an invalid interface number: 76 but max is 2 [ 673.380970][T13040] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 673.421285][T13040] usb 3-1: config 220 has no interface number 2 [ 673.438618][T13040] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 673.471086][T13040] usb 3-1: config 220 interface 0 has no altsetting 0 [ 673.497718][T13040] usb 3-1: config 220 interface 76 has no altsetting 0 [ 673.504937][T13040] usb 3-1: config 220 interface 1 has no altsetting 0 [ 674.425513][T13040] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 674.443289][T13040] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 674.451347][T13040] usb 3-1: Product: syz [ 674.461967][T13040] usb 3-1: Manufacturer: syz [ 674.467701][T13040] usb 3-1: SerialNumber: syz [ 674.711359][T13040] usb 3-1: selecting invalid altsetting 0 [ 674.725733][T13040] usb 3-1: Found UVC 7.01 device syz (8086:0b07) [ 674.747537][T13040] usb 3-1: No valid video chain found. [ 674.780753][T13040] usb 3-1: selecting invalid altsetting 0 [ 674.794293][T13040] usbtest: probe of 3-1:220.1 failed with error -22 [ 674.805107][T13040] usb 3-1: USB disconnect, device number 18 [ 675.140437][T17054] netlink: 68 bytes leftover after parsing attributes in process `syz.1.3513'. [ 675.177981][ T28] audit: type=1326 audit(1781357242.575:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=17052 comm="syz.0.3516" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f2ce739ce59 code=0x0 [ 675.837974][T17057] loop2: detected capacity change from 0 to 4096 [ 675.845494][T17057] EXT4-fs: inline encryption not supported [ 675.860356][T17057] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 675.880854][T17057] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=84ec118, mo2=0003] [ 676.058135][T17057] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 678.170213][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 678.667765][T17084] loop1: detected capacity change from 0 to 256 [ 678.717391][T17084] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1fe4a43c, utbl_chksum : 0xe619d30d) [ 679.673361][T17108] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 679.735032][T17108] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 679.952296][T17113] loop3: detected capacity change from 0 to 256 [ 679.979909][T17113] exfat: Deprecated parameter 'utf8' [ 679.985430][T17113] exfat: Deprecated parameter 'namecase' [ 680.010958][T17113] exfat: Deprecated parameter 'namecase' [ 680.016511][T17092] loop0: detected capacity change from 0 to 40427 [ 680.032996][T17113] exfat: Bad value for 'namecase' [ 680.078140][T17092] F2FS-fs (loop0): invalid crc value [ 680.105848][T17092] F2FS-fs (loop0): Found nat_bits in checkpoint [ 680.238624][T17092] F2FS-fs (loop0): Start checkpoint disabled! [ 680.301214][T17092] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 680.335874][T17113] loop3: detected capacity change from 0 to 8192 [ 680.385044][T13040] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 680.609548][T13040] usb 3-1: Using ep0 maxpacket: 16 [ 680.621313][T13040] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 680.666051][T13040] usb 3-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 680.699263][T13040] usb 3-1: config 0 interface 0 altsetting 16 has 1 endpoint descriptor, different from the interface descriptor's value: 28 [ 680.735658][T13040] usb 3-1: config 0 interface 0 has no altsetting 0 [ 680.757525][T13040] usb 3-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 680.788485][T13040] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 680.825425][T13040] usb 3-1: config 0 descriptor?? [ 681.290774][T13040] hid (null): global environment stack underflow [ 681.315798][T13040] hid (null): global environment stack underflow [ 681.336006][T13040] hid (null): invalid report_size 63541 [ 681.342697][T13040] hid (null): global environment stack underflow [ 681.381760][T13040] hid (null): invalid report_count 1498996290 [ 681.474883][ T1130] kworker/u4:7: attempt to access beyond end of device [ 681.474883][ T1130] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 681.507763][T13040] usb 3-1: USB disconnect, device number 19 [ 681.526384][ T1130] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 684.071796][ T23] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 684.285221][ T23] usb 3-1: Using ep0 maxpacket: 8 [ 684.305459][ T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 684.332371][ T23] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4 [ 684.369925][ T23] usb 3-1: New USB device found, idVendor=04b4, idProduct=de64, bcdDevice= 0.00 [ 684.391297][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 684.481039][ T23] usb 3-1: config 0 descriptor?? [ 684.945069][T17141] UHID_CREATE from different security context by process 674 (syz.3.3544), this is not allowed. [ 685.048579][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x2 [ 685.096469][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.312396][T17145] siw: device registration error -23 [ 685.320344][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.329154][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.337427][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.345866][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.352964][ T23] cypress 0003:04B4:DE64.000D: unknown main item tag 0x0 [ 685.360173][ T23] cypress 0003:04B4:DE64.000D: item fetching failed at offset 27/38 [ 685.369125][ T23] cypress 0003:04B4:DE64.000D: parse failed [ 685.375514][ T23] cypress: probe of 0003:04B4:DE64.000D failed with error -22 [ 685.404153][ T23] usb 3-1: USB disconnect, device number 20 [ 687.437687][ T5780] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 687.686684][ T5780] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 687.713465][ T5780] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 687.756591][ T5780] usb 4-1: config 220 has no interface number 2 [ 687.774027][ T5780] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 687.800407][ T5780] usb 4-1: config 220 interface 0 has no altsetting 0 [ 687.810030][ T5780] usb 4-1: config 220 interface 76 has no altsetting 0 [ 687.843431][ T5780] usb 4-1: config 220 interface 1 has no altsetting 0 [ 687.867871][ T5780] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 687.883502][ T5780] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 687.929357][ T5780] usb 4-1: Product: syz [ 687.933592][ T5780] usb 4-1: Manufacturer: syz [ 687.938184][ T5780] usb 4-1: SerialNumber: syz [ 688.207515][ T5780] usb 4-1: selecting invalid altsetting 0 [ 688.213907][ T5780] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 688.225820][ T5780] usb 4-1: No valid video chain found. [ 688.244457][ T5780] usb 4-1: selecting invalid altsetting 0 [ 688.251192][ T5780] usbtest: probe of 4-1:220.1 failed with error -22 [ 688.266419][ T5780] usb 4-1: USB disconnect, device number 12 [ 688.293005][T13040] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 688.511061][T13040] usb 3-1: Using ep0 maxpacket: 8 [ 688.520635][T13040] usb 3-1: unable to get BOS descriptor or descriptor too short [ 688.537234][T13040] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 688.551985][T13040] usb 3-1: New USB device found, idVendor=09e8, idProduct=0062, bcdDevice= 0.40 [ 688.562803][T13040] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 688.570977][T13040] usb 3-1: Product: syz [ 688.575431][T13040] usb 3-1: Manufacturer: syz [ 688.580064][T13040] usb 3-1: SerialNumber: syz [ 688.823141][T13040] usb 3-1: Quirk or no altest; falling back to MIDI 1.0 [ 688.897686][T13040] snd-usb-audio: probe of 3-1:1.0 failed with error -2 [ 688.935502][T13040] usb 3-1: USB disconnect, device number 21 [ 688.938861][T17161] loop1: detected capacity change from 0 to 131072 [ 688.976588][T17161] F2FS-fs (loop1): Wrong CP boundary, start(512) end(1536) blocks(512) [ 688.985197][T17161] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 689.021794][T15686] udevd[15686]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 689.043892][T17170] loop3: detected capacity change from 0 to 512 [ 689.050603][T17161] F2FS-fs (loop1): Unrecognized mount option "inline_xattr_size=0x000000000000003" or missing value [ 689.096824][T17170] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 689.152401][T17170] ext4 filesystem being mounted at /272/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 689.982340][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 690.006654][T17178] syzkaller0: entered promiscuous mode [ 690.031770][T17178] syzkaller0: entered allmulticast mode [ 690.066483][ T5793] Bluetooth: hci4: command 0x1003 tx timeout [ 690.074201][T12992] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 690.174559][T17180] loop3: detected capacity change from 0 to 512 [ 690.182033][T17180] EXT4-fs: Ignoring removed i_version option [ 690.188162][T17180] EXT4-fs: Ignoring removed bh option [ 690.289013][T17180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 690.302403][T17180] ext4 filesystem being mounted at /273/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 690.464515][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 690.490966][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 690.497395][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 690.557891][T12814] usb 2-1: new full-speed USB device number 20 using dummy_hcd [ 690.824285][T12814] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 690.857951][T12814] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 690.887029][T12814] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 690.908495][T12814] usb 2-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 690.930248][T12814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 690.954161][T12814] usb 2-1: config 0 descriptor?? [ 691.548770][T12814] usbhid 2-1:0.0: can't add hid device: -71 [ 691.554963][T12814] usbhid: probe of 2-1:0.0 failed with error -71 [ 691.565859][T12814] usb 2-1: USB disconnect, device number 20 [ 692.333904][T17189] loop2: detected capacity change from 0 to 40427 [ 692.354468][T17189] F2FS-fs (loop2): Corrupted extension count (64 + 1 > 64) [ 692.361830][T17189] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 692.387924][T17189] F2FS-fs (loop2): Image doesn't support compression [ 692.404851][T17189] F2FS-fs (loop2): Image doesn't support compression [ 692.439933][T17189] F2FS-fs (loop2): invalid crc value [ 692.728166][T17189] F2FS-fs (loop2): Start checkpoint disabled! [ 692.797281][T17189] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 692.827622][T17189] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 694.634400][T17222] loop2: detected capacity change from 0 to 4096 [ 694.666444][T17222] EXT4-fs: inline encryption not supported [ 694.708861][T17222] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 694.729055][T17222] EXT4-fs (loop2): Test dummy encryption mode enabled [ 694.844403][T17226] input: syz1 as /devices/virtual/input/input15 [ 695.074669][T17222] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 695.259577][T17222] System zones: 0-5 [ 695.524093][T17222] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 695.692146][ T28] audit: type=1800 audit(1781357261.777:13): pid=17222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3571" name="file1" dev="loop2" ino=15 res=0 errno=0 [ 695.802481][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 696.039977][ T5780] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 697.088578][ T5780] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 697.099872][ T5780] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 697.109407][ T5780] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 697.197102][ T5780] usb 2-1: config 0 descriptor?? [ 697.255197][T17244] loop0: detected capacity change from 0 to 4096 [ 697.438124][ T5780] usbhid 2-1:0.0: can't add hid device: -71 [ 697.455429][ T5780] usbhid: probe of 2-1:0.0 failed with error -71 [ 697.495448][ T5780] usb 2-1: USB disconnect, device number 21 [ 697.553464][T17244] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 697.663270][T17246] loop2: detected capacity change from 0 to 40427 [ 697.679887][T17246] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 697.687830][T17246] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 697.697514][T17246] F2FS-fs (loop2): invalid crc value [ 697.727568][T17246] F2FS-fs (loop2): Found nat_bits in checkpoint [ 697.780934][T17246] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 697.788320][T17246] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 697.789570][T17244] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #15: comm syz.0.3579: corrupted inode contents [ 697.861108][T17244] EXT4-fs error (device loop0): ext4_dirty_inode:6143: inode #15: comm syz.0.3579: mark_inode_dirty error [ 697.878486][T17244] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #15: comm syz.0.3579: corrupted inode contents [ 698.013839][T17244] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #15: comm syz.0.3579: mark_inode_dirty error [ 698.049181][ T5780] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 698.126081][T17244] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #15: comm syz.0.3579: corrupted inode contents [ 698.169163][T17244] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #15: comm syz.0.3579: mark_inode_dirty error [ 698.520674][T17244] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #15: comm syz.0.3579: corrupted inode contents [ 698.768535][T17244] EXT4-fs error (device loop0): ext4_truncate:4301: inode #15: comm syz.0.3579: mark_inode_dirty error [ 698.959666][T17244] EXT4-fs error (device loop0) in ext4_setattr:5682: Corrupt filesystem [ 699.019090][T17255] EXT4-fs error (device loop0): ext4_do_update_inode:5255: inode #15: comm syz.0.3579: corrupted inode contents [ 699.056019][ T5780] usb 2-1: device descriptor read/all, error -71 [ 699.227818][T13385] EXT4-fs warning (device loop0): ext4_evict_inode:257: couldn't mark inode dirty (err -117) [ 699.327728][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 699.382464][T17263] loop1: detected capacity change from 0 to 256 [ 699.441930][T17263] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 699.485943][T17263] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 699.559381][T17263] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 700.195866][T17261] loop3: detected capacity change from 0 to 40427 [ 700.224292][T17261] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 700.233549][T17261] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 700.267776][T17261] F2FS-fs (loop3): Found nat_bits in checkpoint [ 700.292905][ T23] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 700.397772][T17282] loop2: detected capacity change from 0 to 256 [ 700.433440][T17261] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 700.441021][T17261] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 700.509536][ T23] usb 1-1: Using ep0 maxpacket: 32 [ 700.518170][ T23] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 700.744103][ T23] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 700.758728][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 700.766884][ T23] usb 1-1: Product: syz [ 700.771949][ T23] usb 1-1: Manufacturer: syz [ 700.777089][ T23] usb 1-1: SerialNumber: syz [ 701.891458][ T23] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 701.903507][ T23] cdc_ncm 1-1:1.0: dwNtbInMaxSize=16 is too small. Using 2048 [ 701.911569][ T23] cdc_ncm 1-1:1.0: setting rx_max = 2048 [ 702.024026][T13687] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 702.113056][ T23] cdc_ncm 1-1:1.0: setting tx_max = 88 [ 702.137525][ T23] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42 [ 702.250457][T13687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 702.269828][T13687] usb 2-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 702.278949][T13687] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 702.335088][T13687] usb 2-1: config 0 descriptor?? [ 702.346864][ T5865] usb 1-1: USB disconnect, device number 14 [ 702.376763][ T5865] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP) [ 702.573135][T13687] usbhid 2-1:0.0: can't add hid device: -71 [ 702.579272][T13687] usbhid: probe of 2-1:0.0 failed with error -71 [ 702.608704][T13687] usb 2-1: USB disconnect, device number 24 [ 703.178291][T13687] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 703.402311][T13687] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 703.423986][T13687] usb 2-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.40 [ 703.433103][T13687] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 703.469216][T13687] usb 2-1: config 0 descriptor?? [ 703.937841][T17289] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 703.980643][T17289] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 706.559910][T13687] aiptek 2-1:0.0: Aiptek using 400 ms programming speed [ 706.611290][T13687] input: Aiptek as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input16 [ 706.865052][T13687] usb 2-1: USB disconnect, device number 25 [ 706.865129][ C0] aiptek 2-1:0.0: aiptek_irq - usb_submit_urb failed with result -19 [ 707.771712][T17349] loop2: detected capacity change from 0 to 256 [ 708.094357][T13687] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 708.298726][T13687] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 708.350250][T13687] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024 [ 708.388666][T13687] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 708.403666][T13687] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 708.416876][T17358] syzkaller0: entered promiscuous mode [ 708.422532][T17358] syzkaller0: entered allmulticast mode [ 708.423122][T13687] usb 1-1: Product: syz [ 708.433231][T13687] usb 1-1: Manufacturer: syz [ 708.446555][T13687] usb 1-1: SerialNumber: syz [ 708.464418][T13687] cdc_mbim 1-1:1.0: skipping garbage [ 708.684973][T17353] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 708.933865][T17360] loop3: detected capacity change from 0 to 8192 [ 709.339356][T17353] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 709.356320][T13687] cdc_mbim 1-1:1.0: dwNtbInMaxSize=0 is too small. Using 2048 [ 709.364161][T13687] cdc_mbim 1-1:1.0: setting rx_max = 2048 [ 709.720145][T13687] cdc_mbim 1-1:1.0: setting tx_max = 184 [ 709.817152][T13687] cdc_mbim 1-1:1.0: cdc-wdm0: USB WDM device [ 709.844250][T13687] wwan wwan0: port wwan0mbim0 attached [ 709.890111][T13687] cdc_mbim 1-1:1.0 wwan0: register 'cdc_mbim' at usb-dummy_hcd.0-1, CDC MBIM, da:a7:80:bd:8c:c3 [ 709.933471][T13687] usb 1-1: USB disconnect, device number 15 [ 709.940537][T13687] cdc_mbim 1-1:1.0 wwan0: unregister 'cdc_mbim' usb-dummy_hcd.0-1, CDC MBIM [ 710.061861][T13687] wwan wwan0: port wwan0mbim0 disconnected [ 710.319858][T17366] loop3: detected capacity change from 0 to 512 [ 710.346165][T17366] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 710.379998][T17366] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal [ 710.859711][ T968] usb 1-1: new full-speed USB device number 16 using dummy_hcd [ 710.861611][T13687] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 711.118463][ T968] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 711.241248][ T968] usb 1-1: config 0 interface 0 has no altsetting 0 [ 711.315834][ T968] usb 1-1: New USB device found, idVendor=28bd, idProduct=0909, bcdDevice= 0.00 [ 711.429605][ T968] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 711.679539][ T968] usb 1-1: config 0 descriptor?? [ 711.791390][T13687] usb 4-1: Using ep0 maxpacket: 32 [ 711.843759][T13687] usb 4-1: config 0 has no interfaces? [ 711.855591][T13687] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 711.880389][T13687] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 711.898573][T13687] usb 4-1: config 0 descriptor?? [ 711.918332][T17378] syzkaller0: entered promiscuous mode [ 711.925964][T17378] syzkaller0: entered allmulticast mode [ 712.051180][T17381] syzkaller0: entered promiscuous mode [ 712.056752][T17381] syzkaller0: entered allmulticast mode [ 712.425252][T17389] loop2: detected capacity change from 0 to 1024 [ 712.433920][T17389] EXT4-fs: Ignoring removed bh option [ 712.447442][ T968] usbhid 1-1:0.0: can't add hid device: -71 [ 712.457568][ T968] usbhid: probe of 1-1:0.0 failed with error -71 [ 712.458936][T17389] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 712.483627][ T968] usb 1-1: USB disconnect, device number 16 [ 712.513285][T17389] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 712.547626][T17393] loop3: detected capacity change from 0 to 256 [ 712.604787][T17393] exFAT-fs (loop3): failed to load upcase table (idx : 0x00011f1c, chksum : 0x850fc7e5, utbl_chksum : 0xe619d30d) [ 712.659933][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 712.708711][T13040] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 713.070223][T17397] loop2: detected capacity change from 0 to 4096 [ 713.080453][T17397] EXT4-fs: Ignoring removed nobh option [ 713.114087][T17397] EXT4-fs (loop2): Test dummy encryption mode enabled [ 713.155604][T17397] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003] [ 713.164451][T17397] System zones: 0-5 [ 713.186076][T17397] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 713.914227][ T968] usb 4-1: USB disconnect, device number 13 [ 714.510107][T17404] loop3: detected capacity change from 0 to 256 [ 714.529217][T13040] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 714.565637][T13040] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 715.565926][T13040] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 715.575615][T13040] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 715.585977][T13040] usb 2-1: SerialNumber: syz [ 717.037327][T13040] usb 2-1: can't set config #1, error -71 [ 717.075027][T13040] usb 2-1: USB disconnect, device number 26 [ 717.306322][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 717.471945][T17416] syzkaller0: entered promiscuous mode [ 717.479111][T17416] syzkaller0: entered allmulticast mode [ 717.668553][T13040] usb 2-1: new full-speed USB device number 27 using dummy_hcd [ 717.884333][T13040] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 717.902857][T13040] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 717.909178][T17426] loop0: detected capacity change from 0 to 4096 [ 717.923941][T17426] EXT4-fs: Ignoring removed mblk_io_submit option [ 717.924728][T13040] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 717.948622][T17426] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 717.949511][T13040] usb 2-1: New USB device found, idVendor=04d8, idProduct=f002, bcdDevice= 0.00 [ 717.970647][T17426] EXT4-fs (loop0): Test dummy encryption mode enabled [ 717.980386][T13040] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 717.992209][T17426] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c198, mo2=0003] [ 718.000741][T13040] usb 2-1: config 0 descriptor?? [ 718.011284][T17426] System zones: 0-5 [ 718.046927][T17426] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 718.382366][T17432] macsec1: entered allmulticast mode [ 718.389591][T17432] veth1_macvtap: entered allmulticast mode [ 718.432569][T17433] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 718.456415][T17433] overlayfs: failed to resolve './bus': -2 [ 719.848084][T13040] usbhid 2-1:0.0: can't add hid device: -71 [ 719.855011][T13040] usbhid: probe of 2-1:0.0 failed with error -71 [ 719.865282][T13040] usb 2-1: USB disconnect, device number 27 [ 721.378093][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 722.742562][T17456] loop0: detected capacity change from 0 to 4096 [ 722.984251][T17458] xt_TPROXY: Can be used only with -p tcp or -p udp [ 723.251330][T17456] EXT4-fs: Ignoring removed mblk_io_submit option [ 723.445565][T17456] EXT4-fs: inline encryption not supported [ 723.534139][T17456] EXT4-fs (loop0): Test dummy encryption mode enabled [ 723.659825][T17456] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 723.786539][T17464] xt_hashlimit: size too large, truncated to 1048576 [ 723.924402][T17456] fscrypt: AES-256-XTS using implementation "xts-aes-aesni" [ 724.146806][T17478] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 724.554584][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 724.774783][ T5865] usb 4-1: new high-speed USB device number 14 using dummy_hcd [ 725.084042][T17486] loop0: detected capacity change from 0 to 512 [ 725.099697][T17486] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 725.118943][T17486] EXT4-fs (loop0): 1 truncate cleaned up [ 725.126082][T17486] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 725.143877][ T5865] usb 4-1: Using ep0 maxpacket: 16 [ 725.199163][ T5865] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 725.234507][ T5865] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 725.281245][ T5865] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 725.298203][ T5865] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 725.330985][ T5865] usb 4-1: config 0 descriptor?? [ 725.363085][ T5865] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 725.411611][T17483] loop2: detected capacity change from 0 to 40427 [ 725.423827][T17483] F2FS-fs (loop2): build fault injection attr: rate: 19, type: 0x7ffff [ 725.809832][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 725.889203][ T5844] usb 4-1: USB disconnect, device number 14 [ 726.130778][T17495] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 726.172373][T17495] kvm: pic: non byte read [ 726.185796][T17495] kvm: pic: level sensitive irq not supported [ 726.186152][T17495] kvm: pic: non byte read [ 726.216740][T17495] kvm: pic: level sensitive irq not supported [ 726.216829][T17495] kvm: pic: non byte read [ 726.244774][T17495] kvm: pic: level sensitive irq not supported [ 726.244886][T17495] kvm: pic: non byte read [ 727.124774][T17502] loop3: detected capacity change from 0 to 256 [ 730.102998][T17515] loop0: detected capacity change from 0 to 16 [ 730.133771][T17515] erofs: (device loop0): mounted with root inode @ nid 36. [ 730.598620][ T5780] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 731.700869][T17531] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3657'. [ 731.749579][ T5780] usb 1-1: Using ep0 maxpacket: 16 [ 731.757628][ T5780] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 731.774138][ T5780] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 731.806187][ T5780] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 731.815308][ T5780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 731.883061][T17519] loop3: detected capacity change from 0 to 40427 [ 731.926608][ T5780] usb 1-1: config 0 descriptor?? [ 731.945372][T17519] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 731.947359][ T5780] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 731.965809][T17519] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 732.051344][T17519] F2FS-fs (loop3): Found nat_bits in checkpoint [ 732.244750][T17539] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 732.251829][T17519] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 732.270389][T17519] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 732.312656][T17539] kvm: pic: non byte read [ 732.317680][T17539] kvm: pic: level sensitive irq not supported [ 732.317811][T17539] kvm: pic: non byte read [ 732.362010][T17539] kvm: pic: level sensitive irq not supported [ 732.362267][T17539] kvm: pic: non byte read [ 732.395915][T17539] kvm: pic: level sensitive irq not supported [ 732.396076][T17539] kvm: pic: non byte read [ 732.533439][ T28] audit: type=1800 audit(725.583:14): pid=17519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.3655" name="bus" dev="loop3" ino=10 res=0 errno=0 [ 732.561304][ T5865] usb 1-1: USB disconnect, device number 17 [ 732.632223][T17519] Invalid ELF header magic: != ELF [ 736.229270][T17568] can: request_module (can-proto-0) failed. [ 737.161329][T17581] loop1: detected capacity change from 0 to 512 [ 737.170962][T17581] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 737.194237][T17581] EXT4-fs (loop1): 1 truncate cleaned up [ 737.201421][T17581] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 737.986147][T12990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 738.415436][T17599] loop3: detected capacity change from 0 to 256 [ 738.436759][T17599] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbd11d127, utbl_chksum : 0xe619d30d) [ 738.689983][T12814] usb 2-1: new high-speed USB device number 28 using dummy_hcd [ 739.468045][T12814] usb 2-1: Using ep0 maxpacket: 16 [ 739.506901][T12814] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 739.595588][T12814] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 739.600845][T17604] loop2: detected capacity change from 0 to 1024 [ 739.610650][T12814] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 739.627587][T12814] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 739.644396][T12814] usb 2-1: config 0 descriptor?? [ 739.656476][T12814] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 739.740080][T17604] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 739.787247][T17608] 9pnet: p9_errstr2errno: server reported unknown error 000000000000000000000110xffffffffffffffff [ 739.853887][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 740.059487][ T5780] usb 2-1: USB disconnect, device number 28 [ 740.200201][T17618] loop2: detected capacity change from 0 to 8192 [ 740.237391][T17618] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 740.352591][ T28] audit: type=1800 audit(732.901:15): pid=17618 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.3677" name="file1" dev="loop2" ino=1048616 res=0 errno=0 [ 740.844249][T17622] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 742.057946][T17628] loop1: detected capacity change from 0 to 8192 [ 742.633175][T12814] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 743.103322][T12814] usb 1-1: config 220 has an invalid interface number: 76 but max is 2 [ 743.142469][T12814] usb 1-1: config 220 has an invalid descriptor of length 255, skipping remainder of the config [ 743.193123][T12814] usb 1-1: config 220 has no interface number 2 [ 743.217698][T12814] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 743.267436][T12814] usb 1-1: config 220 interface 0 has no altsetting 0 [ 743.304273][T12814] usb 1-1: config 220 interface 76 has no altsetting 0 [ 743.327449][T12814] usb 1-1: config 220 interface 1 has no altsetting 0 [ 743.364285][T12814] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 743.373928][T12814] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 743.382415][T17644] loop3: detected capacity change from 0 to 4096 [ 743.398531][T12814] usb 1-1: Product: syz [ 743.403234][T12814] usb 1-1: Manufacturer: syz [ 743.407865][T12814] usb 1-1: SerialNumber: syz [ 743.465804][T17644] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 743.603972][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 743.657430][T12814] usb 1-1: Found UVC 7.01 device syz (8086:0b07) [ 743.673037][T12814] usb 1-1: No valid video chain found. [ 743.690755][T12814] usb 1-1: selecting invalid altsetting 0 [ 743.741501][T12814] usb 1-1: selecting invalid altsetting 0 [ 743.772634][T12814] usbtest: probe of 1-1:220.1 failed with error -22 [ 743.796287][T12814] usb 1-1: USB disconnect, device number 18 [ 744.090230][T17657] loop1: detected capacity change from 0 to 40427 [ 744.098717][T17657] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 744.107185][T17657] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 744.123854][T17657] F2FS-fs (loop1): invalid crc value [ 744.133467][T17657] F2FS-fs (loop1): Found nat_bits in checkpoint [ 744.187885][T17657] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 744.196377][T17657] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 744.287402][T13040] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 745.270484][T13040] usb 3-1: Using ep0 maxpacket: 16 [ 745.287000][T13040] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 745.304517][T13040] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 745.318066][T13040] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 745.328413][T13040] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 745.340316][T13040] usb 3-1: config 0 descriptor?? [ 745.349316][T13040] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 745.367728][T17674] netlink: 7 bytes leftover after parsing attributes in process `syz.0.3694'. [ 745.814241][ T5881] usb 3-1: USB disconnect, device number 22 [ 745.895048][T17676] loop3: detected capacity change from 0 to 512 [ 745.909205][T17676] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 745.935577][T17676] EXT4-fs (loop3): 1 truncate cleaned up [ 745.942699][T17676] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 748.811428][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 750.146037][T17714] loop2: detected capacity change from 0 to 128 [ 750.198433][T17714] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 750.230665][T17714] syz.2.3705 (pid 17714) is setting deprecated v1 encryption policy; recommend upgrading to v2. [ 750.323503][T13695] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 750.357368][ T5881] usb 2-1: new high-speed USB device number 29 using dummy_hcd [ 750.562977][ T5881] usb 2-1: unable to get BOS descriptor or descriptor too short [ 750.572432][ T5881] usb 2-1: config 128 has an invalid interface number: 168 but max is 1 [ 750.580859][ T5881] usb 2-1: config 128 contains an unexpected descriptor of type 0x2, skipping [ 750.603319][ T5881] usb 2-1: config 128 contains an unexpected descriptor of type 0x1, skipping [ 750.612262][ T5881] usb 2-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config [ 750.645553][ T5881] usb 2-1: config 128 has 1 interface, different from the descriptor's value: 2 [ 750.656234][ T5881] usb 2-1: config 128 has no interface number 0 [ 750.662571][ T5881] usb 2-1: config 128 interface 168 altsetting 5 endpoint 0x3 has invalid maxpacket 1024, setting to 64 [ 750.699220][ T5881] usb 2-1: config 128 interface 168 altsetting 5 endpoint 0x7 has invalid maxpacket 1024, setting to 64 [ 750.721665][ T5881] usb 2-1: config 128 interface 168 altsetting 5 endpoint 0x8 has an invalid bInterval 89, changing to 10 [ 750.746773][T12814] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 750.752590][ T5881] usb 2-1: config 128 interface 168 altsetting 5 endpoint 0x1 has invalid wMaxPacketSize 0 [ 750.774072][ T5881] usb 2-1: config 128 interface 168 altsetting 5 has 6 endpoint descriptors, different from the interface descriptor's value: 7 [ 750.805843][ T5881] usb 2-1: config 128 interface 168 has no altsetting 0 [ 750.818005][ T5881] usb 2-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=a9.0d [ 750.827964][ T5881] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 750.837191][ T5881] usb 2-1: Product: syz [ 750.852636][ T5881] usb 2-1: Manufacturer: syz [ 750.857319][ T5881] usb 2-1: SerialNumber: syz [ 750.966210][T12814] usb 3-1: Using ep0 maxpacket: 16 [ 750.979652][T12814] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 750.999370][T12814] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 751.030270][T12814] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 751.039378][T12814] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 751.048381][T17725] loop3: detected capacity change from 0 to 40427 [ 751.064687][T17725] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 751.071143][T17725] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 751.084425][T12814] usb 3-1: config 0 descriptor?? [ 751.101424][T12814] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 751.120855][T17725] F2FS-fs (loop3): invalid crc value [ 751.153050][ T5881] radio-si470x 2-1:128.168: could not find interrupt in endpoint [ 751.190863][ T5881] radio-si470x: probe of 2-1:128.168 failed with error -5 [ 751.220274][ T5881] usbhid 2-1:128.168: couldn't find an input interrupt endpoint [ 751.255252][T17725] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 751.262377][T17725] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 751.274388][ T5881] usb 2-1: USB disconnect, device number 29 [ 751.463824][T12814] usb 3-1: USB disconnect, device number 23 [ 751.528301][T14022] syz-executor: attempt to access beyond end of device [ 751.528301][T14022] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 751.552938][T14022] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 754.047987][T17727] loop0: detected capacity change from 0 to 131072 [ 754.072100][T17727] F2FS-fs (loop0): Test dummy encryption mode enabled [ 754.092566][T17727] F2FS-fs (loop0): invalid crc value [ 754.111431][T17727] F2FS-fs (loop0): Failed to start F2FS issue_checkpoint_thread (-4) [ 754.343261][T12992] Bluetooth: hci0: command 0x0c1a tx timeout [ 754.802274][T17765] syzkaller0: entered promiscuous mode [ 754.815948][T17765] syzkaller0: entered allmulticast mode [ 755.674136][T17772] loop2: detected capacity change from 0 to 1024 [ 755.711721][T17772] ext4: Unknown parameter 'nouser_xattr' [ 755.935192][T12814] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 756.218934][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 756.225640][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 756.343258][T12814] usb 1-1: Using ep0 maxpacket: 16 [ 756.449018][T12814] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 756.623338][T12814] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 757.313742][T12814] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 757.322871][T12814] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 757.373283][T12814] usb 1-1: config 0 descriptor?? [ 757.395133][T12814] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 757.627221][T17784] loop3: detected capacity change from 0 to 8192 [ 758.391714][ T5844] usb 1-1: USB disconnect, device number 19 [ 764.912943][T17808] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 765.349830][T17822] loop3: detected capacity change from 0 to 8192 [ 765.568620][T17826] loop0: detected capacity change from 0 to 512 [ 765.769188][T17826] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 766.793402][ T28] audit: type=1800 audit(757.578:16): pid=17826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.3735" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 766.853731][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 767.261716][ T27] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 767.615659][ T27] usb 3-1: Using ep0 maxpacket: 16 [ 767.891576][ T27] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 767.940841][ T27] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 767.975511][ T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 768.264652][ T27] usb 3-1: config 0 descriptor?? [ 769.053842][ T27] usb 3-1: can't set config #0, error -71 [ 769.062327][ T27] usb 3-1: USB disconnect, device number 24 [ 769.599904][T17852] loop0: detected capacity change from 0 to 512 [ 769.618602][T17852] EXT4-fs (loop0): Test dummy encryption mode enabled [ 769.763466][T17852] EXT4-fs error (device loop0): ext4_orphan_get:1404: inode #15: comm syz.0.3741: inode has both inline data and extents flags [ 769.794153][T17852] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.3741: couldn't read orphan inode 15 (err -117) [ 769.812770][T17852] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 770.110341][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 770.555863][T17882] loop0: detected capacity change from 0 to 1024 [ 770.626857][T17882] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5 [ 770.640566][T17882] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 770.653813][T17882] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.3749: Failed to acquire dquot type 0 [ 770.727116][T17882] EXT4-fs error (device loop0): mb_free_blocks:1970: group 0, inode 13: block 160:freeing already freed block (bit 10); block bitmap corrupt. [ 770.788548][T17882] EXT4-fs (loop0): 1 truncate cleaned up [ 770.813514][T17882] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 770.927873][ T5881] usb 4-1: new high-speed USB device number 15 using dummy_hcd [ 771.668965][T17882] Quota error (device loop0): do_check_range: Getting block 64 out of range 1-5 [ 771.701359][T17882] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0 [ 771.730439][T17882] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.3749: Failed to acquire dquot type 0 [ 772.206752][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 772.702396][ T27] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 772.904711][ T27] usb 1-1: Using ep0 maxpacket: 16 [ 772.923243][ T27] usb 1-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config [ 772.944860][ T27] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 772.968358][ T27] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 772.999728][ T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 773.019196][ T27] usb 1-1: Product: syz [ 773.030046][ T27] usb 1-1: Manufacturer: syz [ 773.043459][ T27] usb 1-1: SerialNumber: syz [ 773.200422][ T5881] usb 4-1: Using ep0 maxpacket: 16 [ 773.211250][ T5881] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 773.224650][ T5881] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 773.233851][ T5881] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 773.245356][ T5881] usb 4-1: config 0 descriptor?? [ 773.254976][ T5881] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 773.493546][ T27] usb 1-1: 0:2 : does not exist [ 773.502614][ T27] usb 1-1: 5:0: failed to get current value for ch 0 (-22) [ 773.554440][ T27] usb 1-1: USB disconnect, device number 20 [ 773.624255][T15686] udevd[15686]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 773.739945][T12814] usb 4-1: USB disconnect, device number 15 [ 774.268038][T17908] netlink: 'syz.1.3756': attribute type 1 has an invalid length. [ 776.587266][T17927] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 776.623085][T17921] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3761'. [ 776.963365][T17938] loop2: detected capacity change from 0 to 256 [ 777.629223][T13040] usb 2-1: new high-speed USB device number 30 using dummy_hcd [ 778.708963][T13040] usb 2-1: Using ep0 maxpacket: 16 [ 778.728349][T13040] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9 [ 778.760622][T13040] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 778.769834][T13040] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 778.872301][T13040] usb 2-1: config 0 descriptor?? [ 778.923448][T13040] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 778.944573][T17953] fuse: Unknown parameter 'group_id00000000000000000000' [ 778.950248][T17951] loop0: detected capacity change from 0 to 1024 [ 779.027541][T17951] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 779.391915][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 779.404264][ T968] usb 2-1: USB disconnect, device number 30 [ 779.562947][T17967] loop2: detected capacity change from 0 to 4096 [ 779.580835][T17967] EXT4-fs: Ignoring removed mblk_io_submit option [ 779.590165][T17967] EXT4-fs: inline encryption not supported [ 779.619574][T17967] EXT4-fs (loop2): Test dummy encryption mode enabled [ 779.656481][T17967] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 782.647290][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 782.770757][T17985] syzkaller0: entered promiscuous mode [ 782.791417][T17985] syzkaller0: entered allmulticast mode [ 783.184367][T17987] fuse: Unknown parameter 'group_id00000000000000000000' [ 783.444032][T17980] loop0: detected capacity change from 0 to 40427 [ 783.479455][T17980] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 783.503745][T17980] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 783.536732][T17980] F2FS-fs (loop0): invalid crc_offset: 1 [ 783.831245][T17980] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 783.847491][T17980] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 783.954829][ T23] usb 4-1: new high-speed USB device number 16 using dummy_hcd [ 784.710713][T18014] loop0: detected capacity change from 0 to 512 [ 784.748853][ T23] usb 4-1: Using ep0 maxpacket: 16 [ 784.756438][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 784.766721][ T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 784.780258][ T23] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 784.781077][T18014] EXT4-fs (loop0): Test dummy encryption mode enabled [ 784.789442][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 784.791770][ T23] usb 4-1: config 0 descriptor?? [ 784.814987][ T23] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 784.840654][T18014] EXT4-fs error (device loop0): ext4_orphan_get:1404: inode #15: comm syz.0.3789: inode has both inline data and extents flags [ 784.857639][T18014] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.3789: couldn't read orphan inode 15 (err -117) [ 784.910329][T18014] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 785.110505][T18021] fuse: Bad value for 'user_id' [ 785.178425][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 785.215253][T18023] syzkaller0: entered promiscuous mode [ 785.225630][T18023] syzkaller0: entered allmulticast mode [ 785.362228][T18027] loop0: detected capacity change from 0 to 128 [ 785.385194][T18027] EXT4-fs: inline encryption not supported [ 785.410324][T18027] EXT4-fs (loop0): Test dummy encryption mode enabled [ 785.431827][T18027] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 785.953223][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 786.028296][T18031] loop1: detected capacity change from 0 to 40427 [ 786.037029][T18031] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 786.045119][T18031] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 786.070755][T18031] F2FS-fs (loop1): invalid crc value [ 786.171521][T18031] F2FS-fs (loop1): Found nat_bits in checkpoint [ 787.246393][T18031] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 787.255926][T18031] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 789.349898][ T5844] usb 4-1: USB disconnect, device number 16 [ 790.107933][T18053] loop3: detected capacity change from 0 to 16 [ 790.111558][T13385] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 790.135455][T18053] erofs: (device loop3): mounted with root inode @ nid 36. [ 791.558196][ T5844] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 791.637372][ T5780] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 791.692085][T18061] fuse: Bad value for 'user_id' [ 791.765812][ T5844] usb 4-1: Using ep0 maxpacket: 16 [ 791.790478][ T5844] usb 4-1: config 1 interface 0 altsetting 81 endpoint 0x81 has an invalid bInterval 253, changing to 11 [ 791.819244][ T5844] usb 4-1: config 1 interface 0 altsetting 81 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 791.840026][ T5844] usb 4-1: config 1 interface 0 has no altsetting 0 [ 791.850976][ T5780] usb 3-1: Using ep0 maxpacket: 16 [ 791.863879][ T5780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 791.883275][ T5780] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 791.905116][ T5844] usb 4-1: New USB device found, idVendor=0eef, idProduct=722a, bcdDevice= 0.40 [ 791.914221][ T5844] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 791.942870][ T5780] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00 [ 791.984548][ T5844] usb 4-1: Product: syz [ 791.988921][ T5780] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 792.018714][ T5844] usb 4-1: Manufacturer: syz [ 792.030244][ T5844] usb 4-1: SerialNumber: syz [ 792.080684][ T5780] usb 3-1: config 0 descriptor?? [ 792.208080][T18068] syzkaller0: entered promiscuous mode [ 792.224805][T18068] syzkaller0: entered allmulticast mode [ 792.359981][ T5844] usbhid 4-1:1.0: can't add hid device: -71 [ 792.377811][ T5844] usbhid: probe of 4-1:1.0 failed with error -71 [ 792.409763][ T5844] usb 4-1: USB disconnect, device number 17 [ 792.583489][ T5780] apple 0003:05AC:024B.000E: unknown global tag 0xe [ 792.596539][ T5780] apple 0003:05AC:024B.000E: item 0 1 1 14 parsing failed [ 792.607900][ T5780] apple 0003:05AC:024B.000E: parse failed [ 792.634180][ T5780] apple: probe of 0003:05AC:024B.000E failed with error -22 [ 792.813217][ T5844] usb 3-1: USB disconnect, device number 25 [ 793.176247][ T23] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 793.507370][ T23] usb 1-1: Using ep0 maxpacket: 16 [ 794.048726][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 794.059439][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 794.075839][ T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 794.148856][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 794.269849][ T23] usb 1-1: config 0 descriptor?? [ 794.311609][ T23] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 794.417894][T18078] loop3: detected capacity change from 0 to 1024 [ 794.529793][T18078] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 794.634476][T18078] EXT4-fs error (device loop3): ext4_xattr_block_get:597: inode #15: comm syz.3.3809: corrupted xattr block 128: invalid ea_ino [ 794.668421][T18078] EXT4-fs (loop3): Remounting filesystem read-only [ 794.704275][ T28] audit: type=1800 audit(783.752:17): pid=18078 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.3809" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 794.761857][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 794.777392][T18080] loop2: detected capacity change from 0 to 8192 [ 795.854312][T18092] fuse: Bad value for 'fd' [ 796.191814][T18094] netlink: 20 bytes leftover after parsing attributes in process `syz.1.3813'. [ 796.365935][ T23] usb 1-1: USB disconnect, device number 21 [ 796.409936][T18096] syzkaller0: entered promiscuous mode [ 796.433891][T18096] syzkaller0: entered allmulticast mode [ 796.876890][T18106] loop2: detected capacity change from 0 to 512 [ 796.967292][T18106] EXT4-fs error (device loop2): ext4_orphan_get:1404: inode #15: comm syz.2.3818: iget: bad i_size value: 38620345925642 [ 797.039329][T18106] EXT4-fs error (device loop2): ext4_orphan_get:1409: comm syz.2.3818: couldn't read orphan inode 15 (err -117) [ 797.042412][T18110] loop1: detected capacity change from 0 to 256 [ 797.086564][T18106] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 797.218921][T18091] loop3: detected capacity change from 0 to 40427 [ 797.239104][T18091] F2FS-fs (loop3): Corrupted extension count (64 + 1 > 64) [ 797.270631][T18091] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 797.301514][T18091] F2FS-fs (loop3): Image doesn't support compression [ 797.302682][T18105] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.3818: bg 0: block 5: invalid block bitmap [ 797.308256][T18091] F2FS-fs (loop3): Image doesn't support compression [ 797.334826][T18091] F2FS-fs (loop3): invalid crc value [ 797.526418][T18091] F2FS-fs (loop3): Start checkpoint disabled! [ 797.611881][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 797.654378][T18091] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 797.661499][T18091] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 797.731457][T18116] loop0: detected capacity change from 0 to 256 [ 797.746663][T18116] exfat: Deprecated parameter 'utf8' [ 797.783464][T18116] exfat: Deprecated parameter 'utf8' [ 797.789677][T18116] exfat: Unknown parameter 'u)d' [ 797.913974][T18117] infiniband syz2: set active [ 798.080874][ T28] audit: type=1400 audit(786.925:18): apparmor="DENIED" operation="setprocattr" info="fscreate" error=-22 profile="unconfined" pid=18090 comm="syz.3.3811" [ 798.699826][ T1130] kworker/u4:7: attempt to access beyond end of device [ 798.699826][ T1130] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 798.765006][ T1130] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 799.078089][T18120] loop0: detected capacity change from 0 to 8192 [ 800.927057][ T28] audit: type=1326 audit(789.592:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 800.950745][ T28] audit: type=1326 audit(789.592:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 800.975961][ T28] audit: type=1326 audit(789.592:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.030290][ T28] audit: type=1326 audit(789.601:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.088545][ T28] audit: type=1326 audit(789.601:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.176891][ T28] audit: type=1326 audit(789.601:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.192129][T18133] syzkaller0: entered promiscuous mode [ 801.232965][T18136] loop2: detected capacity change from 0 to 256 [ 801.240956][T18133] syzkaller0: entered allmulticast mode [ 801.279057][ T28] audit: type=1326 audit(789.601:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.284756][T18136] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011f1c, chksum : 0x850fc7e5, utbl_chksum : 0xe619d30d) [ 801.313077][T18138] loop1: detected capacity change from 0 to 512 [ 801.348456][ T28] audit: type=1326 audit(789.601:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.374346][ T28] audit: type=1326 audit(789.601:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.402146][ T28] audit: type=1326 audit(789.638:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18127 comm="syz.2.3825" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=307 compat=0 ip=0x7f7af239ce59 code=0x7ffc0000 [ 801.468589][ T5780] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 801.672947][ T5780] usb 4-1: Using ep0 maxpacket: 16 [ 801.684194][ T5780] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 801.698869][ T5780] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 801.727610][ T5780] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 801.738418][ T5780] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 801.764049][ T5780] usb 4-1: config 0 descriptor?? [ 801.774820][ T5780] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 802.763007][T12814] usb 4-1: USB disconnect, device number 18 [ 802.836803][T18158] binder_alloc: 18157: binder_alloc_buf size 64768 failed, no address space [ 802.858167][T18158] binder_alloc: allocated: 0 (num: 0 largest: 0), free: 12288 (num: 1 largest: 12288) [ 803.433134][T18168] loop1: detected capacity change from 0 to 256 [ 804.252989][T18176] syzkaller0: entered promiscuous mode [ 804.259098][T18176] syzkaller0: entered allmulticast mode [ 804.744102][ T23] usb 2-1: new high-speed USB device number 31 using dummy_hcd [ 804.754845][T18184] loop3: detected capacity change from 0 to 512 [ 804.824018][T18184] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 804.842369][T18186] loop2: detected capacity change from 0 to 256 [ 804.895482][T18186] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xf4000b1f, utbl_chksum : 0xe619d30d) [ 804.932023][T18184] EXT4-fs (loop3): 1 truncate cleaned up [ 804.952118][ T23] usb 2-1: Using ep0 maxpacket: 16 [ 804.979623][ T23] usb 2-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config [ 805.018503][T18182] loop0: detected capacity change from 0 to 40427 [ 805.042860][ T23] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 805.052854][T18182] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 805.060908][T18182] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 805.086720][T18184] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 805.109453][ T23] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 805.127009][T18182] F2FS-fs (loop0): Found nat_bits in checkpoint [ 805.127114][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 805.185192][ T23] usb 2-1: Product: syz [ 805.202805][ T23] usb 2-1: Manufacturer: syz [ 805.219409][ T23] usb 2-1: SerialNumber: syz [ 805.442726][T18182] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 805.472650][T18182] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 805.554141][ T23] usb 2-1: 0:2 : does not exist [ 805.572864][ T23] usb 2-1: 5:0: failed to get current value for ch 0 (-22) [ 805.608431][ T23] usb 2-1: USB disconnect, device number 31 [ 806.248387][T15686] udevd[15686]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 806.837854][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 806.919626][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 806.952665][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 806.987218][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.003465][T18199] loop1: detected capacity change from 0 to 256 [ 807.037946][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.047420][T18199] exfat: Deprecated parameter 'utf8' [ 807.052915][T18199] exfat: Deprecated parameter 'namecase' [ 807.080844][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.088505][T18182] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.122736][T18199] exfat: Deprecated parameter 'namecase' [ 807.196694][T18199] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 807.288811][T13385] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.350424][T13385] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 807.399325][T13385] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix. [ 808.606770][ T5780] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 808.799589][ T5780] usb 1-1: Using ep0 maxpacket: 16 [ 808.819537][ T5780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 808.846546][ T5780] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 808.867449][ T5780] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 808.902506][ T5780] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 808.912021][ T5780] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 808.942496][ T5780] usb 1-1: config 0 descriptor?? [ 809.176831][ T5780] usbhid 1-1:0.0: can't add hid device: -71 [ 809.187670][ T5780] usbhid: probe of 1-1:0.0 failed with error -71 [ 809.209144][ T5780] usb 1-1: USB disconnect, device number 22 [ 809.687925][T18219] syzkaller0: entered promiscuous mode [ 809.699818][T18219] syzkaller0: entered allmulticast mode [ 810.117907][T18226] syz.2.3852: attempt to access beyond end of device [ 810.117907][T18226] loop2: rw=0, sector=0, nr_sectors = 1 limit=0 [ 810.130946][T18226] exFAT-fs (loop2): unable to read boot sector [ 810.137233][T18226] exFAT-fs (loop2): failed to read boot sector [ 810.143466][T18226] exFAT-fs (loop2): failed to recognize exfat type [ 817.638546][T18254] syzkaller0: entered promiscuous mode [ 817.653434][T18254] syzkaller0: entered allmulticast mode [ 817.825489][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 818.228558][T18261] loop1: detected capacity change from 0 to 512 [ 818.278139][T18261] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 818.323294][T18261] EXT4-fs (loop1): 1 truncate cleaned up [ 818.380667][T18261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 819.353504][T12990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 822.465078][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 822.471544][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 823.068357][T18291] netlink: 56 bytes leftover after parsing attributes in process `syz.1.3870'. [ 823.339483][T18296] syzkaller0: entered promiscuous mode [ 823.357829][T18296] syzkaller0: entered allmulticast mode [ 823.749332][ T28] kauditd_printk_skb: 3 callbacks suppressed [ 823.749384][ T28] audit: type=1326 audit(810.909:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 823.809838][T18302] loop1: detected capacity change from 0 to 2048 [ 823.881265][ T28] audit: type=1326 audit(810.909:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 823.946162][ T28] audit: type=1326 audit(810.909:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.008797][T18302] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 824.033528][ T28] audit: type=1326 audit(810.909:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=280 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.118330][ T28] audit: type=1326 audit(810.909:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.155960][T18302] EXT4-fs error (device loop1): __ext4_new_inode:1081: comm syz.1.3876: reserved inode found cleared - inode=1 [ 824.176046][ T28] audit: type=1326 audit(810.909:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.343559][T18290] loop3: detected capacity change from 0 to 512 [ 824.359451][ T28] audit: type=1326 audit(810.909:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.396689][T18290] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 824.442045][ T28] audit: type=1326 audit(810.909:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.476828][T18290] EXT4-fs (loop3): 1 truncate cleaned up [ 824.602580][ T28] audit: type=1326 audit(810.909:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.646107][T18320] xt_NFQUEUE: number of total queues is 0 [ 824.849599][ T28] audit: type=1326 audit(810.909:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18301 comm="syz.1.3876" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f63fdf9ce59 code=0x7ffc0000 [ 824.865584][T18290] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 824.938182][T18318] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3877'. [ 826.841643][T18307] EXT4-fs error (device loop1): ext4_validate_block_bitmap:430: comm ext4lazyinit: bg 0: block 2: invalid block bitmap [ 826.876414][T18336] loop0: detected capacity change from 0 to 512 [ 826.989370][T18336] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 827.050877][T18336] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 827.061191][T18336] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.3883: Corrupt directory, running e2fsck is recommended [ 827.078539][T18336] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 827.088219][T18336] EXT4-fs error (device loop0): ext4_iget_extra_inode:4739: inode #15: comm syz.0.3883: corrupted in-inode xattr: invalid ea_ino [ 827.125899][T18336] EXT4-fs error (device loop0): ext4_orphan_get:1409: comm syz.0.3883: couldn't read orphan inode 15 (err -117) [ 827.170210][T18336] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 827.302193][T18336] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 827.368532][T18336] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 827.415314][T18336] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.3883: Corrupt directory, running e2fsck is recommended [ 827.461504][T18344] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 827.500073][T18344] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 827.546157][T18344] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.3883: Corrupt directory, running e2fsck is recommended [ 827.603275][T18336] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 827.620763][T18336] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 827.649626][T18336] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.3883: Corrupt directory, running e2fsck is recommended [ 827.695784][T18344] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 827.883487][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 828.001209][T18350] netlink: 36 bytes leftover after parsing attributes in process `syz.0.3886'. [ 828.201924][T18354] syzkaller0: entered promiscuous mode [ 828.217882][T18354] syzkaller0: entered allmulticast mode [ 828.249441][T18351] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 828.666890][T18357] batadv_slave_1: entered promiscuous mode [ 828.857236][T18356] batadv_slave_1: left promiscuous mode [ 828.984081][T18362] loop0: detected capacity change from 0 to 512 [ 829.389269][T18370] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 829.481888][T18374] kvm: pic: level sensitive irq not supported [ 829.481988][T18374] kvm: pic: non byte read [ 829.506278][T18374] kvm: pic: level sensitive irq not supported [ 829.506375][T18374] kvm: pic: non byte read [ 829.526118][T18374] kvm: pic: level sensitive irq not supported [ 829.526212][T18374] kvm: pic: non byte read [ 829.538793][T18374] kvm: pic: level sensitive irq not supported [ 829.538951][T18374] kvm: pic: non byte read [ 829.556980][T18374] kvm: pic: level sensitive irq not supported [ 829.557128][T18374] kvm: pic: non byte read [ 829.570864][T18374] kvm: pic: level sensitive irq not supported [ 829.571019][T18374] kvm: pic: non byte read [ 829.593536][T18374] kvm: pic: level sensitive irq not supported [ 829.593718][T18374] kvm: pic: non byte read [ 829.712257][T18374] kvm: pic: level sensitive irq not supported [ 829.712346][T18374] kvm: pic: non byte read [ 829.744211][T18374] kvm: pic: level sensitive irq not supported [ 829.744347][T18374] kvm: pic: non byte read [ 830.183876][T18387] syzkaller0: entered promiscuous mode [ 830.189529][T18387] syzkaller0: entered allmulticast mode [ 830.392323][ T968] usb 2-1: new full-speed USB device number 32 using dummy_hcd [ 830.617588][ T968] usb 2-1: unable to get BOS descriptor or descriptor too short [ 830.701339][ T968] usb 2-1: not running at top speed; connect to a high speed hub [ 830.829692][ T968] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 830.892641][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 830.953125][ T968] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 831.006084][ T968] usb 2-1: string descriptor 0 read error: -22 [ 831.012552][ T968] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 831.028954][ T968] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 831.136710][ T968] usb 2-1: 0:2 : does not exist [ 831.852351][ T968] usb 2-1: 5:0: cannot get min/max values for control 2 (id 5) [ 832.450818][ T968] usb 2-1: 5:0: cannot get min/max values for control 3 (id 5) [ 832.463766][ T968] usb 2-1: 5:0: failed to get current value for ch 1 (-22) [ 833.066363][ T968] usb 2-1: 5:0: cannot get min/max values for control 3 (id 5) [ 833.131562][ T968] usb 2-1: 5:0: cannot get min/max values for control 2 (id 5) [ 833.145980][ T968] usb 2-1: USB disconnect, device number 32 [ 834.608391][T18426] loop2: detected capacity change from 0 to 512 [ 834.680955][T18426] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 834.681107][T18428] syzkaller0: entered promiscuous mode [ 834.697064][T18428] syzkaller0: entered allmulticast mode [ 834.793935][T18426] EXT4-fs (loop2): 1 truncate cleaned up [ 834.831887][T18426] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 834.874876][T18433] loop0: detected capacity change from 0 to 512 [ 834.909334][T18433] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 834.973235][T18433] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 48 vs 41 free clusters [ 835.097566][T18433] __quota_error: 39 callbacks suppressed [ 835.097586][T18433] Quota error (device loop0): write_blk: dquota write failed [ 835.146212][T18433] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5 [ 835.183084][T18433] Quota error (device loop0): write_blk: dquota write failed [ 835.206107][T18433] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 835.243139][T18433] EXT4-fs error (device loop0): ext4_acquire_dquot:6953: comm syz.0.3910: Failed to acquire dquot type 1 [ 835.266674][T18433] EXT4-fs (loop0): 1 truncate cleaned up [ 835.280646][T18433] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 835.348188][T18433] EXT4-fs: Cannot specify journal on remount [ 835.624870][T13385] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 836.659758][T18450] loop3: detected capacity change from 0 to 4096 [ 836.740546][T18450] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 837.613563][T14022] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 837.745505][T18465] loop3: detected capacity change from 0 to 1024 [ 837.756189][T18465] EXT4-fs: Ignoring removed bh option [ 837.794167][T18465] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal [ 838.112993][T18468] syzkaller0: entered promiscuous mode [ 838.118551][T18468] syzkaller0: entered allmulticast mode [ 838.149648][T18470] fuse: Unknown parameter 'user00000000000000000000' [ 839.083430][ T23] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 839.297156][ T23] usb 4-1: Using ep0 maxpacket: 16 [ 839.317442][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 839.336041][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 839.362624][ T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 839.397308][ T23] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 839.422426][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 839.462634][ T23] usb 4-1: config 0 descriptor?? [ 839.909456][ T23] usbhid 4-1:0.0: can't add hid device: -71 [ 839.926576][ T23] usbhid: probe of 4-1:0.0 failed with error -71 [ 839.946018][ T23] usb 4-1: USB disconnect, device number 19 [ 840.036854][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 840.138325][T18494] loop0: detected capacity change from 0 to 512 [ 840.162207][T18494] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 840.217700][T18498] fuse: Unknown parameter 'user00000000000000000000' [ 840.783449][T18505] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 841.580982][T18510] loop3: detected capacity change from 0 to 256 [ 841.606447][T18510] exfat: Deprecated parameter 'namecase' [ 841.612208][T18510] exfat: Deprecated parameter 'namecase' [ 841.784199][T18510] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xbf24f927, utbl_chksum : 0xe619d30d) [ 841.846122][T18512] binder_alloc: 18511: binder_alloc_buf, no vma [ 842.007216][T18515] syzkaller0: entered promiscuous mode [ 842.015036][T18515] syzkaller0: entered allmulticast mode [ 842.461022][T18518] loop3: detected capacity change from 0 to 8192 [ 845.170199][T18532] fuse: Unknown parameter 'user00000000000000000000' [ 845.590520][T18538] loop2: detected capacity change from 0 to 128 [ 845.601926][T13040] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 845.625020][T18538] EXT4-fs: inline encryption not supported [ 845.683122][T18538] EXT4-fs (loop2): Test dummy encryption mode enabled [ 845.735758][T18538] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 845.826296][T13040] usb 1-1: Using ep0 maxpacket: 16 [ 845.849119][T13040] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 845.866775][T13040] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 845.909289][T13040] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 845.964312][T13040] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 845.989705][T13040] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 846.024981][T13040] usb 1-1: config 0 descriptor?? [ 846.696603][T13695] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 847.312524][T18554] loop3: detected capacity change from 0 to 256 [ 847.484492][T18556] syzkaller0: entered promiscuous mode [ 847.491451][T18556] syzkaller0: entered allmulticast mode [ 848.661149][T13040] usbhid 1-1:0.0: can't add hid device: -71 [ 848.667244][T13040] usbhid: probe of 1-1:0.0 failed with error -71 [ 848.686111][T13040] usb 1-1: USB disconnect, device number 23 [ 848.761548][T18561] fuse: Unknown parameter 'user_i00000000000000000000' [ 849.266486][T18578] loop0: detected capacity change from 0 to 128 [ 849.295665][T18578] EXT4-fs: inline encryption not supported [ 849.321764][T18578] EXT4-fs (loop0): Test dummy encryption mode enabled [ 849.362838][T18578] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 849.700973][T18585] syzkaller0: entered promiscuous mode [ 849.706688][T18585] syzkaller0: entered allmulticast mode [ 850.288627][T13385] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 851.286980][T18002] Bluetooth: hci0: command 0x0c1a tx timeout [ 852.336476][T18600] fuse: Unknown parameter 'user_i00000000000000000000' [ 852.471942][T18597] loop0: detected capacity change from 0 to 40427 [ 852.544219][T18597] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 852.595280][T18597] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 852.640624][T18597] F2FS-fs (loop0): invalid crc value [ 852.858571][T18597] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 852.892679][T18597] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 852.986178][ T23] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 853.406680][ T23] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 853.465024][T18613] syz.0.3958: attempt to access beyond end of device [ 853.465024][T18613] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 853.741858][T18613] syz.0.3958: attempt to access beyond end of device [ 853.741858][T18613] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 853.911174][ T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 853.922446][ T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 853.932851][ T23] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 854.505178][ T23] usb 3-1: New USB device found, idVendor=05ac, idProduct=8243, bcdDevice=8b.40 [ 854.548008][ T23] usb 3-1: New USB device strings: Mfr=11, Product=0, SerialNumber=0 [ 854.576913][ T23] usb 3-1: Manufacturer: syz [ 854.666043][ T23] usb 3-1: config 0 descriptor?? [ 855.189932][ T23] appleir 0003:05AC:8243.000F: unknown main item tag 0x0 [ 855.221414][ T23] appleir 0003:05AC:8243.000F: No inputs registered, leaving [ 855.255085][ T23] appleir 0003:05AC:8243.000F: hiddev0,hidraw0: USB HID v0.00 Device [syz] on usb-dummy_hcd.2-1/input0 [ 855.665461][ T23] usb 3-1: USB disconnect, device number 26 [ 855.822269][T13385] syz-executor: attempt to access beyond end of device [ 855.822269][T13385] loop0: rw=2049, sector=45112, nr_sectors = 16 limit=40427 [ 855.856826][T13385] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 855.868719][T13385] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 856.056966][T18628] fuse: Unknown parameter 'user_i00000000000000000000' [ 856.439646][T18635] loop2: detected capacity change from 0 to 512 [ 856.509620][T18637] netlink: 4 bytes leftover after parsing attributes in process `syz.1.3970'. [ 856.533463][T18637] xt_NFQUEUE: number of total queues is 0 [ 857.413693][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 857.477917][T18635] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 857.488625][T18642] loop0: detected capacity change from 0 to 128 [ 857.552263][T18642] EXT4-fs: inline encryption not supported [ 857.570359][T18642] EXT4-fs (loop0): Test dummy encryption mode enabled [ 857.615048][T18642] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 858.038526][T13695] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 858.279060][T13385] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 858.472731][T18655] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 859.534348][T18667] fuse: Unknown parameter 'user_id00000000000000000000' [ 860.215628][T18679] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 860.887733][T18692] tipc: Enabled bearer , priority 0 [ 861.288978][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 861.698136][T18692] syzkaller0: entered promiscuous mode [ 861.739033][T18692] syzkaller0: entered allmulticast mode [ 861.778729][T18692] tipc: Resetting bearer [ 861.801412][T18695] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 862.109019][T15965] tipc: Resetting bearer [ 862.120845][T18691] tipc: Resetting bearer [ 863.675675][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 865.353024][T18721] loop3: detected capacity change from 0 to 256 [ 867.888186][T18002] Bluetooth: hci0: command 0x0c1a tx timeout [ 869.245155][T18738] loop3: detected capacity change from 0 to 128 [ 869.278285][T18738] EXT4-fs: inline encryption not supported [ 869.353340][T18738] EXT4-fs (loop3): Test dummy encryption mode enabled [ 869.375777][T18738] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 870.328033][T18691] tipc: Disabling bearer [ 870.530594][T18744] loop0: detected capacity change from 0 to 256 [ 870.618805][T18744] FAT-fs (loop0): Directory bread(block 64) failed [ 870.647685][T18744] FAT-fs (loop0): Directory bread(block 65) failed [ 870.658144][T18744] FAT-fs (loop0): Directory bread(block 66) failed [ 870.684552][T18744] FAT-fs (loop0): Directory bread(block 67) failed [ 870.702157][T18744] FAT-fs (loop0): Directory bread(block 68) failed [ 870.731107][T18744] FAT-fs (loop0): Directory bread(block 69) failed [ 870.749991][T18744] FAT-fs (loop0): Directory bread(block 70) failed [ 870.767016][T18744] FAT-fs (loop0): Directory bread(block 71) failed [ 870.779497][T18744] FAT-fs (loop0): Directory bread(block 72) failed [ 870.786201][T18744] FAT-fs (loop0): Directory bread(block 73) failed [ 871.223251][ T27] tipc: Node number set to 1425501784 [ 871.551046][T18736] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 872.077594][T14022] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 872.551650][T18755] loop3: detected capacity change from 0 to 128 [ 872.604740][T18755] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 872.742009][T18755] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 873.143359][T14022] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 873.477015][T18762] loop3: detected capacity change from 0 to 128 [ 873.566907][ T28] audit: type=1804 audit(857.568:81): pid=18762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.4008" name="/newroot/378/file0/bus" dev="loop3" ino=1048634 res=1 errno=0 [ 873.914455][T18763] syz.3.4008: attempt to access beyond end of device [ 873.914455][T18763] loop3: rw=2049, sector=225, nr_sectors = 16 limit=128 [ 874.163784][T18764] syz.3.4008: attempt to access beyond end of device [ 874.163784][T18764] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128 [ 874.248884][T18771] tipc: Enabled bearer , priority 0 [ 874.257201][T18764] syz.3.4008: attempt to access beyond end of device [ 874.257201][T18764] loop3: rw=2049, sector=241, nr_sectors = 88 limit=128 [ 874.334713][T18762] syz.3.4008: attempt to access beyond end of device [ 874.334713][T18762] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128 [ 874.334891][T18769] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 874.413199][T18762] syz.3.4008: attempt to access beyond end of device [ 874.413199][T18762] loop3: rw=2049, sector=241, nr_sectors = 8 limit=128 [ 874.472096][T18771] syzkaller0: entered promiscuous mode [ 874.493944][T18771] syzkaller0: entered allmulticast mode [ 874.501030][T18771] tipc: Resetting bearer [ 874.517541][T18770] tipc: Resetting bearer [ 874.667898][T13040] usb 3-1: new high-speed USB device number 27 using dummy_hcd [ 874.719546][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 874.870928][T13040] usb 3-1: Using ep0 maxpacket: 16 [ 874.884089][T13040] usb 3-1: config 1 has an invalid interface number: 105 but max is 0 [ 874.917647][T13040] usb 3-1: config 1 has no interface number 0 [ 874.935326][T13040] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 874.951297][T13040] usb 3-1: config 1 interface 105 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64 [ 874.988861][T13040] usb 3-1: config 1 interface 105 has no altsetting 0 [ 875.010557][T13040] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 875.019696][T13040] usb 3-1: New USB device strings: Mfr=1, Product=23, SerialNumber=3 [ 875.028220][T13040] usb 3-1: Product: syz [ 875.045190][T13040] usb 3-1: Manufacturer: syz [ 875.050017][T13040] usb 3-1: SerialNumber: syz [ 875.123808][T18780] /dev/loop1: Can't open blockdev [ 875.888247][T18775] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 875.898067][T18775] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 876.411283][T18775] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 876.418924][T18775] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 877.698986][T13040] aqc111 3-1:1.105 (unnamed net_device) (uninitialized): Failed to read(0x1) reg index 0x0001: -32 [ 881.791163][T18770] tipc: Disabling bearer [ 881.799957][T18790] A link change request failed with some changes committed already. Interface 26±ÿ]×0¢ÊÞª may have been left with an inconsistent configuration, please check. [ 881.827145][T13040] aqc111 3-1:1.105 eth1: register 'aqc111' at usb-dummy_hcd.2-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter, 0a:ec:7c:a3:e8:00 [ 881.851700][T13040] usb 3-1: USB disconnect, device number 27 [ 881.864983][T13040] aqc111 3-1:1.105 eth1: unregister 'aqc111' usb-dummy_hcd.2-1, USB-C 3.1 to 5GBASE-T Ethernet Adapter [ 881.960114][T13040] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19 [ 881.998325][T18809] netlink: 56 bytes leftover after parsing attributes in process `syz.1.4018'. [ 882.009392][T13040] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x1) reg index 0x0002: -19 [ 882.019006][T13040] aqc111 3-1:1.105 eth1 (unregistered): Failed to write(0x61) reg index 0x0000: -19 [ 882.124066][T18814] loop0: detected capacity change from 0 to 16 [ 882.164252][T18814] erofs: (device loop0): mounted with root inode @ nid 36. [ 882.219405][T18814] syz.0.4020: attempt to access beyond end of device [ 882.219405][T18814] loop0: rw=524288, sector=8, nr_sectors = 24 limit=16 [ 882.304744][T18814] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -48 in[55, 4041] out[4096] [ 882.374787][ T28] audit: type=1800 audit(865.812:82): pid=18814 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.4020" name="file2" dev="loop0" ino=89 res=0 errno=0 [ 884.157699][T18827] syz.0.4022: attempt to access beyond end of device [ 884.157699][T18827] loop0: rw=0, sector=0, nr_sectors = 1 limit=0 [ 884.171625][T18827] exFAT-fs (loop0): unable to read boot sector [ 884.177930][T18827] exFAT-fs (loop0): failed to read boot sector [ 884.184196][T18827] exFAT-fs (loop0): failed to recognize exfat type [ 885.283364][T18831] loop3: detected capacity change from 0 to 512 [ 885.317247][T18831] EXT4-fs error (device loop3): ext4_orphan_get:1404: inode #15: comm syz.3.4024: iget: bad i_size value: 38620345925642 [ 885.359007][T18831] EXT4-fs error (device loop3): ext4_orphan_get:1409: comm syz.3.4024: couldn't read orphan inode 15 (err -117) [ 885.526987][T18831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 885.669392][T18834] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.4024: bg 0: block 5: invalid block bitmap [ 885.747938][T18834] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 8 with error 28 [ 885.760847][T18834] EXT4-fs (loop3): This should not happen!! Data will be lost [ 885.760847][T18834] [ 885.771083][T18834] EXT4-fs (loop3): Total free blocks count 0 [ 885.777323][T18834] EXT4-fs (loop3): Free/Dirty block details [ 885.783480][T18834] EXT4-fs (loop3): free_blocks=0 [ 885.788672][T18834] EXT4-fs (loop3): dirty_blocks=592 [ 885.867519][T18834] EXT4-fs (loop3): Block reservation details [ 885.888271][T18834] EXT4-fs (loop3): i_reserved_data_blocks=592 [ 885.956678][T15724] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 8 with max blocks 584 with error 28 [ 887.069111][T18841] loop0: detected capacity change from 0 to 512 [ 887.217550][T18241] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 887.368886][T18843] tipc: Started in network mode [ 887.384537][T18843] tipc: Node identity 8e2e68937602, cluster identity 4711 [ 887.391935][T18843] tipc: Enabled bearer , priority 0 [ 887.477955][T18845] syzkaller0: entered promiscuous mode [ 887.488210][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 887.506822][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 887.526273][T18845] syzkaller0: entered allmulticast mode [ 887.547744][T18845] tipc: Resetting bearer [ 887.630749][T18842] tipc: Resetting bearer [ 890.410092][T18863] loop2: detected capacity change from 0 to 8192 [ 891.909912][T18875] loop0: detected capacity change from 0 to 512 [ 891.918198][T18875] EXT4-fs: Ignoring removed mblk_io_submit option [ 891.955563][T18875] EXT4-fs: Mount option(s) incompatible with ext3 [ 892.925054][T18842] tipc: Disabling bearer [ 892.936348][T18850] A link change request failed with some changes committed already. Interface 26±ÿ]×0¢ÊÞª may have been left with an inconsistent configuration, please check. [ 893.045423][ T968] tipc: Node number set to 4163659923 [ 893.219742][T18880] loop3: detected capacity change from 0 to 512 [ 893.389900][T18241] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 893.503994][T18882] kvm: kvm [18881]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x10000008b [ 893.548375][T18882] kvm: kvm [18881]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0xc1) = 0x100002785 [ 893.636590][T18882] kvm: kvm [18881]: vcpu0, guest rIP: 0x18e Unhandled WRMSR(0x11e) = 0x100000de6 [ 893.656174][T18882] kvm: kvm [18881]: vcpu0, guest rIP: 0x1b8 Unhandled WRMSR(0x11e) = 0xbe702111 [ 895.124545][T18907] loop3: detected capacity change from 0 to 128 [ 895.182701][T18907] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 897.213973][T18915] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check. [ 897.408537][T14022] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 898.931256][T18933] loop0: detected capacity change from 0 to 512 [ 899.081541][T18241] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 899.122778][T18921] loop3: detected capacity change from 0 to 40427 [ 899.179764][T18921] F2FS-fs (loop3): invalid crc value [ 899.205647][T18921] F2FS-fs (loop3): Found nat_bits in checkpoint [ 899.414975][T18921] F2FS-fs (loop3): Start checkpoint disabled! [ 899.470819][T18921] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 900.307271][ T8135] kworker/u4:16: attempt to access beyond end of device [ 900.307271][ T8135] loop3: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 900.348324][ T8135] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 901.276177][ T5881] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 901.569197][T18964] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 903.260219][ T5881] usb 1-1: Using ep0 maxpacket: 16 [ 903.268253][ T5881] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 140, changing to 11 [ 903.293141][ T5881] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 903.306040][ T5881] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 903.324012][ T5881] usb 1-1: Product: syz [ 903.331838][ T5881] usb 1-1: Manufacturer: syz [ 903.336510][ T5881] usb 1-1: SerialNumber: syz [ 903.436985][T18972] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 903.573100][T18976] /dev/loop1: Can't open blockdev [ 903.787293][ C1] hrtimer: interrupt took 58223 ns [ 904.759769][ T27] usb 3-1: new high-speed USB device number 28 using dummy_hcd [ 904.985468][ T27] usb 3-1: Using ep0 maxpacket: 16 [ 905.006878][ T27] usb 3-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config [ 905.032424][ T27] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 905.061342][ T27] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 905.072162][ T5881] cdc_ncm 1-1:1.0: MAC-Address: 42:42:42:42:42:42 [ 905.080962][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 905.088021][ T5881] cdc_ncm 1-1:1.0: setting tx_max = 44 [ 905.111027][ T27] usb 3-1: Product: syz [ 905.127530][ T27] usb 3-1: Manufacturer: syz [ 905.136002][ T5881] cdc_ncm 1-1:1.0 usb0: register 'cdc_ncm' at usb-dummy_hcd.0-1, CDC NCM (NO ZLP), 42:42:42:42:42:42 [ 905.148470][ T27] usb 3-1: SerialNumber: syz [ 905.320060][ T968] usb 1-1: USB disconnect, device number 24 [ 905.356421][ T968] cdc_ncm 1-1:1.0 usb0: unregister 'cdc_ncm' usb-dummy_hcd.0-1, CDC NCM (NO ZLP) [ 905.388509][ T27] usb 3-1: 0:2 : does not exist [ 905.413621][ T27] usb 3-1: 5:0: failed to get current value for ch 0 (-22) [ 905.465480][ T27] usb 3-1: USB disconnect, device number 28 [ 905.565056][T18283] udevd[18283]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 907.666053][T19005] loop0: detected capacity change from 0 to 40427 [ 907.701225][T19005] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 907.707650][T19005] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 907.766282][T19005] F2FS-fs (loop0): invalid crc value [ 907.852778][T19032] kvm: requested 4190 ns i8254 timer period limited to 200000 ns [ 907.950460][T19011] loop2: detected capacity change from 0 to 40427 [ 907.995315][T19011] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 908.031020][T19011] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 908.116227][T19011] F2FS-fs (loop2): Found nat_bits in checkpoint [ 908.123523][T19005] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 908.158065][T19005] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 908.361491][T19011] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 908.390400][T19011] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 908.639245][T19055] syz.0.4069: attempt to access beyond end of device [ 908.639245][T19055] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 908.701669][T19055] syz.0.4069: attempt to access beyond end of device [ 908.701669][T19055] loop0: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 910.749775][T19066] loop2: detected capacity change from 0 to 16 [ 911.025444][T13385] syz-executor: attempt to access beyond end of device [ 911.025444][T13385] loop0: rw=2049, sector=45112, nr_sectors = 16 limit=40427 [ 911.056352][T18241] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 911.158431][T13385] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 911.177137][T13385] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 913.137076][T19089] xt_NFQUEUE: number of total queues is 0 [ 913.540893][T13040] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 913.842938][T13040] usb 1-1: Using ep0 maxpacket: 16 [ 913.878278][T13040] usb 1-1: config 1 has an invalid descriptor of length 191, skipping remainder of the config [ 913.898590][T13040] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 913.900968][T19098] loop3: detected capacity change from 0 to 512 [ 913.919463][T13040] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 913.938042][T13040] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 913.947013][T13040] usb 1-1: Product: syz [ 913.952462][T13040] usb 1-1: Manufacturer: syz [ 913.958016][T13040] usb 1-1: SerialNumber: syz [ 914.017570][T19095] syzkaller0: entered promiscuous mode [ 914.046128][T19095] syzkaller0: entered allmulticast mode [ 914.213674][T13040] usb 1-1: 0:2 : does not exist [ 914.244490][T13040] usb 1-1: 5:0: failed to get current value for ch 0 (-22) [ 914.308627][T13040] usb 1-1: USB disconnect, device number 25 [ 914.402918][T18241] udevd[18241]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 914.573241][T19103] loop2: detected capacity change from 0 to 16 [ 914.603881][T19103] erofs: (device loop2): mounted with root inode @ nid 36. [ 914.657039][T19103] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 914.684437][T19103] erofs: (device loop2): z_erofs_readahead: readahead error at folio 2 @ nid 89 [ 914.712758][T19103] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 914.739950][T19103] erofs: (device loop2): z_erofs_readahead: readahead error at folio 1 @ nid 89 [ 914.756611][T19103] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 914.779009][T19103] erofs: (device loop2): z_erofs_readahead: readahead error at folio 0 @ nid 89 [ 914.801264][T19103] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 914.847802][T19103] erofs: (device loop2): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0 [ 914.857459][T19103] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 0 of nid 89 [ 914.913297][ T28] audit: type=1800 audit(896.263:83): pid=19103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.4088" name="file2" dev="loop2" ino=89 res=0 errno=0 [ 915.295185][T19118] netlink: 56 bytes leftover after parsing attributes in process `syz.3.4092'. [ 915.652692][T19127] syzkaller0: entered promiscuous mode [ 915.658260][T19127] syzkaller0: entered allmulticast mode [ 916.428553][T19140] loop0: detected capacity change from 0 to 512 [ 916.538437][T19140] EXT4-fs (loop0): Test dummy encryption mode enabled [ 916.545377][T19140] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 917.418780][T19140] EXT4-fs error (device loop0): ext4_orphan_get:1430: comm syz.0.4098: bad orphan inode 131083 [ 917.443795][T19140] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 918.238671][T19145] loop3: detected capacity change from 0 to 1024 [ 918.295128][T19145] EXT4-fs: Ignoring removed bh option [ 918.442153][T19145] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 918.627959][T19145] BUG: unable to handle page fault for address: ffffffffffffffec [ 918.635733][T19145] #PF: supervisor read access in kernel mode [ 918.641731][T19145] #PF: error_code(0x0000) - not-present page [ 918.647733][T19145] PGD cf35067 P4D cf35067 PUD cf37067 PMD 0 [ 918.653772][T19145] Oops: 0000 [#1] PREEMPT SMP KASAN [ 918.659164][T19145] CPU: 1 PID: 19145 Comm: syz.3.4101 Not tainted syzkaller #0 [ 918.666649][T19145] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026 [ 918.676736][T19145] RIP: 0010:ext4_ext_map_blocks+0x2d11/0x6800 [ 918.682944][T19145] Code: 8b 7c 24 10 4d 85 ff 0f 84 bd 00 00 00 e8 77 d5 58 ff 49 8d 7f 08 48 89 f8 48 c1 e8 03 42 0f b6 04 30 84 c0 0f 85 3d 1e 00 00 <41> 0f b7 47 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 4d 89 fc 49 8d [ 918.702632][T19145] RSP: 0018:ffffc9000fdff800 EFLAGS: 00010246 [ 918.708786][T19145] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 918.716798][T19145] RDX: ffffc900120f8000 RSI: 0000000000014794 RDI: ffffffffffffffec [ 918.724804][T19145] RBP: ffffc9000fdffab0 R08: ffff888054767d13 R09: 1ffff1100a8ecfa2 [ 918.732812][T19145] R10: dffffc0000000000 R11: ffffed100a8ecfa3 R12: 0000000000000004 [ 918.740822][T19145] R13: 1ffff92001fbff2c R14: dffffc0000000000 R15: ffffffffffffffe4 [ 918.748888][T19145] FS: 00007f9ffa7196c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 918.757832][T19145] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 918.764440][T19145] CR2: ffffffffffffffec CR3: 000000005c7e6000 CR4: 00000000003506e0 [ 918.772467][T19145] Call Trace: [ 918.775830][T19145] [ 918.778828][T19145] ? __might_sleep+0xe0/0xe0 [ 918.783516][T19145] ? ext4_ext_release+0x10/0x10 [ 918.788409][T19145] ? __lock_acquire+0x7d40/0x7d40 [ 918.793488][T19145] ? ext4_es_lookup_extent+0x60e/0xa00 [ 918.798964][T19145] ext4_map_blocks+0x9e2/0x1b80 [ 918.803852][T19145] ? ext4_issue_zeroout+0x250/0x250 [ 918.809087][T19145] ? ext4_journal_check_start+0x178/0x250 [ 918.814832][T19145] ? __ext4_journal_start_sb+0x259/0x560 [ 918.820530][T19145] ext4_alloc_file_blocks+0x3df/0xc50 [ 918.825935][T19145] ? trace_ext4_fallocate_enter+0x1d0/0x1d0 [ 918.831858][T19145] ? __mark_inode_dirty+0x3a8/0xc90 [ 918.837112][T19145] ? down_read_killable+0x340/0x340 [ 918.842392][T19145] ? file_modified_flags+0x267/0x2a0 [ 918.847688][T19145] ext4_fallocate+0xa7f/0x1d40 [ 918.852493][T19145] vfs_fallocate+0x58e/0x700 [ 918.857119][T19145] __x64_sys_fallocate+0xc1/0x110 [ 918.862145][T19145] do_syscall_64+0x55/0xb0 [ 918.866644][T19145] ? clear_bhb_loop+0x40/0x90 [ 918.871370][T19145] ? clear_bhb_loop+0x40/0x90 [ 918.876061][T19145] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 918.882091][T19145] RIP: 0033:0x7f9ff979ce59 [ 918.886548][T19145] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 918.906165][T19145] RSP: 002b:00007f9ffa719028 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 918.914579][T19145] RAX: ffffffffffffffda RBX: 00007f9ff9a15fa0 RCX: 00007f9ff979ce59 [ 918.922627][T19145] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004 [ 918.930620][T19145] RBP: 00007f9ff9832d6f R08: 0000000000000000 R09: 0000000000000000 [ 918.938598][T19145] R10: 000000000008ffff R11: 0000000000000246 R12: 0000000000000000 [ 918.946596][T19145] R13: 00007f9ff9a16038 R14: 00007f9ff9a15fa0 R15: 00007ffd3eb3d078 [ 918.954594][T19145] [ 918.957612][T19145] Modules linked in: [ 918.961516][T19145] CR2: ffffffffffffffec [ 918.965689][T19145] ---[ end trace 0000000000000000 ]--- [ 918.971146][T19145] RIP: 0010:ext4_ext_map_blocks+0x2d11/0x6800 [ 918.977238][T19145] Code: 8b 7c 24 10 4d 85 ff 0f 84 bd 00 00 00 e8 77 d5 58 ff 49 8d 7f 08 48 89 f8 48 c1 e8 03 42 0f b6 04 30 84 c0 0f 85 3d 1e 00 00 <41> 0f b7 47 08 c1 e0 04 48 8d 04 40 48 89 44 24 08 4d 89 fc 49 8d [ 918.996855][T19145] RSP: 0018:ffffc9000fdff800 EFLAGS: 00010246 [ 919.002943][T19145] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000080000 [ 919.011014][T19145] RDX: ffffc900120f8000 RSI: 0000000000014794 RDI: ffffffffffffffec [ 919.019082][T19145] RBP: ffffc9000fdffab0 R08: ffff888054767d13 R09: 1ffff1100a8ecfa2 [ 919.027066][T19145] R10: dffffc0000000000 R11: ffffed100a8ecfa3 R12: 0000000000000004 [ 919.035039][T19145] R13: 1ffff92001fbff2c R14: dffffc0000000000 R15: ffffffffffffffe4 [ 919.043013][T19145] FS: 00007f9ffa7196c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 919.051957][T19145] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 919.058541][T19145] CR2: ffffffffffffffec CR3: 000000005c7e6000 CR4: 00000000003506e0 [ 919.066577][T19145] Kernel panic - not syncing: Fatal exception [ 919.072788][T19145] Kernel Offset: disabled [ 919.077127][T19145] Rebooting in 86400 seconds..